Package "libvpx"

Name:	libvpx
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: VP8 and VP9 video codec encoding/decoding tools
Latest version:	1.14.0-1ubuntu2.1
Release:	noble (24.04)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "libvpx" in Noble

Repository	Area	Version
base	universe	1.14.0-1ubuntu2
base	main	1.14.0-1ubuntu2
security	main	1.14.0-1ubuntu2.1
updates	main	1.14.0-1ubuntu2.1
updates	universe	1.14.0-1ubuntu2.1

Packages in group

Deleted packages are displayed in grey.

vpx-tools

Changelog

Version: 1.14.0-1ubuntu2.1 2024-06-06 18:07:53 UTC

libvpx (1.14.0-1ubuntu2.1) noble-security; urgency=medium * SECURITY UPDATE: multiple integer overflows - debian/patches/CVE-2024-5197-pre1.patch: add test/vpx_image_test.cc. - debian/patches/CVE-2024-5197-1.patch: fix integer overflows in calc of stride_in_bytes in test/vpx_image_test.cc, vpx/src/vpx_image.c. - debian/patches/CVE-2024-5197-2.patch: avoid integer overflows in arithmetic operations in test/vpx_image_test.cc, vpx/src/vpx_image.c, vpx/vpx_image.h. - debian/patches/CVE-2024-5197-3.patch: fix a bug in alloc_size for high bit depths in vpx/src/vpx_image.c. - CVE-2024-5197 -- Marc Deslauriers <email address hidden> Wed, 05 Jun 2024 09:49:38 -0400

CVE-2024-5197

There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter

About - Send Feedback to @ubuntu_updates

Package "libvpx"

Links

Other versions of "libvpx" in Noble

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

security

PPA updates