libvpx-1.9.0-10.el9_7

エラータID: AXSA:2026-324:02

Release date: 
Tuesday, March 17, 2026 - 18:54
Subject: 
libvpx-1.9.0-10.el9_7
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

* libvpx: Heap buffer overflow in libvpx (CVE-2026-2447)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-2447
Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

Solution: 

Update packages.

CVEs: 
CVE-2026-2447
Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.
Additional Info: 

N/A

Download: 

SRPMS
  1. libvpx-1.9.0-10.el9_7.src.rpm
    MD5: 590c89c21f158f04e42dd55109ba8b3a
    SHA-256: f877ce019eec95b7e03462ccebe6da3b8e0bbb66bbeec63d979ec467cc04a06f
    Size: 5.09 MB

Asianux Server 9 for x86_64
  1. libvpx-1.9.0-10.el9_7.i686.rpm
    MD5: b78328b95400576b52534809659e513c
    SHA-256: 631ea3831ddb250930e3b1e1fb7dbc3c873c0b1708fbe14d2afd16483036ed1a
    Size: 1.09 MB
  2. libvpx-1.9.0-10.el9_7.x86_64.rpm
    MD5: f8b398c6b39eaf1ec941bfd54ae0df6d
    SHA-256: 8eb4413bcc7022fea003cfdae28d2db9886fbbd6ae8e14e054b0476598e05d90
    Size: 1.05 MB
  3. libvpx-devel-1.9.0-10.el9_7.i686.rpm
    MD5: ee922efa3be96d518dfe49df3cead997
    SHA-256: ba917557ed61f1e904413fb9a44011e8121f9d4d02d3fde9a6681b48e9a35e82
    Size: 326.39 kB
  4. libvpx-devel-1.9.0-10.el9_7.x86_64.rpm
    MD5: df5eeb6d5afa3c2535f9143291f46005
    SHA-256: fb15613f5656236f9e6bf7a5b010e334a257df520383cd5f0b68603af73a74d3
    Size: 326.27 kB