libvpx-1.9.0-9.el9_6

エラータID: AXSA:2025-10541:02

Release date: 
Tuesday, July 22, 2025 - 16:59
Subject: 
libvpx-1.9.0-9.el9_6
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

* libvpx: Double-free in libvpx encoder (CVE-2025-5283)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-5283
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

Solution: 

Update packages.

CVEs: 
CVE-2025-5283
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Additional Info: 

N/A

Download: 

SRPMS
  1. libvpx-1.9.0-9.el9_6.src.rpm
    MD5: 086adf3f1f2546b1232c1947930c0552
    SHA-256: 2419be2fbbbccf18c77c5629f041f8055310ff4591b14f33093aa3feba29aad4
    Size: 5.09 MB

Asianux Server 9 for x86_64
  1. libvpx-1.9.0-9.el9_6.i686.rpm
    MD5: ea438db498079e76a402ee2897bc2caf
    SHA-256: bed7c4113d63f7e718a7340d92005b781e178f417fb24ad8f438097b8e2f68f9
    Size: 1.09 MB
  2. libvpx-1.9.0-9.el9_6.x86_64.rpm
    MD5: e283a3e0ab855986752e0c78a954fbf8
    SHA-256: 8165b4fabfa1697552cde19545247fabe30e485400262abeba8cd12c69a4050b
    Size: 1.05 MB
  3. libvpx-devel-1.9.0-9.el9_6.i686.rpm
    MD5: d03f84afcf9a0b9f72ee1f0a6346fc17
    SHA-256: c3e8380b2ab28f064f910e531add9bf7d5982f09af23a182d3ad3f4cc2e165f2
    Size: 326.49 kB
  4. libvpx-devel-1.9.0-9.el9_6.x86_64.rpm
    MD5: d6134e82fda5e382104747c06e43ff30
    SHA-256: ac502ac8919436b152fedefd9b58f99367db9aaa58084821de7328deca88ff43
    Size: 326.39 kB