19 matches found
CLSA-2026-1777973407 libvpx: Fix of CVE-2024-5197
CVE-2024-5197: fix integer overflows in image allocation and wrapping logic...
Astra Linux - уязвимость в aom
Integer overflows in the libaom internal function imgallochelper can lead to heap buffer overflows. This function can be accessed through three callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows during the calculations of buffer sizes...
JLSEC-2026-377
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be invalid. Calling...
JLSEC-2026-122
Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: - Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and...
Medium: libvpx
Issue Overview: There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be...
Moderate: Red Hat Security Advisory: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
libvpx: Integer overflow in vpx_img_alloc()
A flaw was found in libvpx. When creating images, libvpx trusts the width, height, and alignment of the user input. However, it does not properly validate the provided values. This flaw allows an attacker to craft user inputs or trick the user into opening crafted files, where these types of valu...
RHEL 9 : libvpx (RHSA-2025:14139)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:14139 advisory. The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia...
CLSA-2025-1755003990 libvpx: Fix of CVE-2024-5197
CVE-2024-5197: fix integer overflows in image allocation and wrapping logic, validate dimensions and alignment to prevent invalid buffer calculations...
SUSE CVE-2024-5171
Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...
SUSE CVE-2024-5197
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be invalid. Calling...
libvpx: Integer overflow in vpx_img_alloc()
A flaw was found in libvpx. When creating images, libvpx trusts the width, height, and alignment of the user input. However, it does not properly validate the provided values. This flaw allows an attacker to craft user inputs or trick the user into opening crafted files, where these types of valu...
libvpx: Integer overflow in vpx_img_alloc()
A flaw was found in libvpx. When creating images, libvpx trusts the width, height, and alignment of the user input. However, it does not properly validate the provided values. This flaw allows an attacker to craft user inputs or trick the user into opening crafted files, where these types of valu...
OESA-2024-1949 aom security update
The Alliance for Open Media’s focus is to deliver a next-generation video format that is: Security Fixes: Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh,...
DEBIAN-CVE-2024-5171
Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...
UBUNTU-CVE-2024-5171
Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...
DEBIAN-CVE-2024-5197
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be invalid. Calling...
libbpg Integer Overflow Vulnerability
libbpg is a new type of image format library. An integer overflow vulnerability exists in the 'imagealloc' function of the bpgenc.c file in libbpg version 0.9.7. An attacker can exploit this vulnerability to cause a denial of service invalid dynamic memory allocation and null pointer backreferenc...
CVE-2017-13136
The imagealloc function in bpgenc.c in libbpg 0.9.7 has an integer overflow, with a resultant invalid malloc and NULL pointer dereference...