Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2409


Security update for libvpx


Type: security
Severity: important
Issued: 2024-07-11
Description:
This update for libvpx fixes the following issues:

- CVE-2024-5197: Fixed interger overflow when calling vpx_img_alloc() or vpx_img_wrap() with large parameters (bsc#1225879).
- CVE-2023-6349: Fixed heap overflow when encoding a frame that has larger dimensions than the originally configured size (bsc#1225403).
- CVE-2023-44488: Fixed heap buffer overflow in vp8 encoding (bsc#1216879).


              

Packages


  • libvpx-1.11.0-150400.3.7.1