-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5490-1                   security@debian.org
https://www.debian.org/security/                          Markus Koschany
September 06, 2023                    https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : aom
CVE ID         : CVE-2020-36130 CVE-2020-36131 CVE-2020-36133 CVE-2020-36135
                 CVE-2021-30473 CVE-2021-30474 CVE-2021-30475

Multiple security vulnerabilities have been discovered in aom, the AV1 Video
Codec Library. Buffer overflows, use-after-free and NULL pointer dereferences
may cause a denial of service or other unspecified impact if a malformed
multimedia file is processed.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1.0.0.errata1-3+deb11u1.

We recommend that you upgrade your aom packages.

For the detailed security status of aom please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/aom

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org

Debian: DSA-5490-1: aom security update

September 5, 2023
Multiple security vulnerabilities have been discovered in aom, the AV1 Video Codec Library

Summary

Multiple security vulnerabilities have been discovered in aom, the AV1 Video
Codec Library. Buffer overflows, use-after-free and NULL pointer dereferences
may cause a denial of service or other unspecified impact if a malformed
multimedia file is processed.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1.0.0.errata1-3+deb11u1.

We recommend that you upgrade your aom packages.

For the detailed security status of aom please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/aom

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org

Severity
Package : aom
CVE ID : CVE-2020-36130 CVE-2020-36131 CVE-2020-36133 CVE-2020-36135
CVE-2021-30473 CVE-2021-30474 CVE-2021-30475

Related News

News

Powered By

Footer Logo

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

Powered By

Footer Logo