[SUSE-SU-2024:2409-1] Security update for libvpx
Severity
Important
CVEs
3
Security update for libvpx
This update for libvpx fixes the following issues:
- CVE-2024-5197: Fixed interger overflow when calling vpx_img_alloc() or vpx_img_wrap() with large parameters (bsc#1225879).
- CVE-2023-6349: Fixed heap overflow when encoding a frame that has larger dimensions than the originally configured size (bsc#1225403).
- CVE-2023-44488: Fixed heap buffer overflow in vp8 encoding (bsc#1216879).
- ID
- SUSE-SU-2024:2409-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2024/suse-su-20242409-1/
- Published
-
2024-07-11T11:55:25
(2 months ago) - Modified
-
2024-07-11T11:55:25
(2 months ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2023-2294
- ALAS2-2024-2617
- ALPINE:CVE-2024-5197
- ALSA-2023:5537
- ALSA-2023:5539
- ALSA-2023:6187
- ALSA-2023:6188
- ALSA-2023:6191
- ALSA-2023:6194
- ALSA-2024:5941
- DSA-5518-1
- DSA-5722-1
- ELSA-2023-5537
- ELSA-2023-5539
- ELSA-2023-6162
- ELSA-2023-6187
- ELSA-2023-6188
- ELSA-2023-6191
- ELSA-2023-6193
- ELSA-2023-6194
- ELSA-2024-5941
- FEDORA-2023-f696934fbf
- FEDORA-2024-47dbf2a4de
- GLSA-202310-04
- RHSA-2023:5537
- RHSA-2023:5539
- RHSA-2023:6162
- RHSA-2023:6187
- RHSA-2023:6188
- RHSA-2023:6191
- RHSA-2023:6194
- RHSA-2024:5941
- RLSA-2023:6188
- RLSA-2024:5941
- SUSE-SU-2024:2408-1
- USN-6403-1
- USN-6403-2
- USN-6403-3
- USN-6814-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2409-1.json | |
Suse | URL for SUSE-SU-2024:2409-1 | https://www.suse.com/support/update/announcement/2024/suse-su-20242409-1/ | |
Suse | E-Mail link for SUSE-SU-2024:2409-1 | https://lists.suse.com/pipermail/sle-updates/2024-July/035913.html | |
Bugzilla | SUSE Bug 1216879 | https://bugzilla.suse.com/1216879 | |
Bugzilla | SUSE Bug 1225403 | https://bugzilla.suse.com/1225403 | |
Bugzilla | SUSE Bug 1225879 | https://bugzilla.suse.com/1225879 | |
CVE | SUSE CVE CVE-2023-44488 page | https://www.suse.com/security/cve/CVE-2023-44488/ | |
CVE | SUSE CVE CVE-2023-6349 page | https://www.suse.com/security/cve/CVE-2023-6349/ | |
CVE | SUSE CVE CVE-2024-5197 page | https://www.suse.com/security/cve/CVE-2024-5197/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |