libvpx-1.7.0-11.el8_10

エラータID: AXSA:2024-8736:01

Release date: 
Friday, August 30, 2024 - 13:58
Subject: 
libvpx-1.7.0-11.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

* libvpx: Heap buffer overflow related to VP9 encoding (CVE-2023-6349)
* libvpx: Integer overflow in vpx_img_alloc() (CVE-2024-5197)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-6349
A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above
CVE-2024-5197
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. We recommend upgrading to version 1.14.1 or beyond

Solution: 

Update packages.

CVEs: 
CVE-2023-6349
A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above
CVE-2024-5197
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. We recommend upgrading to version 1.14.1 or beyond
Additional Info: 

N/A

Download: 

SRPMS
  1. libvpx-1.7.0-11.el8_10.src.rpm
    MD5: 5187479aa0f38ad2bf5b54743623ad9f
    SHA-256: 64cb0b664a7279f7420060b5dc6a4c7d342cd4f3412f8d79c30c9c845f3a83ff
    Size: 2.57 MB

Asianux Server 8 for x86_64
  1. libvpx-1.7.0-11.el8_10.i686.rpm
    MD5: b676be0b1fd72cbaee4cd7abaa080f7f
    SHA-256: 7a64a15d8599468cc0d3c5dcf248e4c928fda26f934581ed37588fb3df11469a
    Size: 884.44 kB
  2. libvpx-1.7.0-11.el8_10.x86_64.rpm
    MD5: 0d039c0dea101de63bffbef4908a4f47
    SHA-256: 7b77819b652f5fc521b2fdb165a559092698bd06cfae1e6b4bb7b041388999c2
    Size: 853.54 kB
  3. libvpx-devel-1.7.0-11.el8_10.i686.rpm
    MD5: 771c3fed7511662ea11db47a42444e2c
    SHA-256: 3ab1362e3a8750cebbeb82fe74d7c03e6ad924eed126599bb19ace811e06abc4
    Size: 326.66 kB
  4. libvpx-devel-1.7.0-11.el8_10.x86_64.rpm
    MD5: bab914a6b8c37d60a2f68c6e0a5704ee
    SHA-256: f7565445e321a0ff8ea441bc06bf26d5af3a7e58fec48569feb44d052b13476e
    Size: 326.64 kB