Debian Aom vulnerabilities

CVE-2024-5171 [CRITICAL] CVE-2024-5171: aom - Integer overflow in libaom internal function img_alloc_helper can lead to heap b... Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow. This function can be reached via 3 callers: * Calling aom_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned aom_image_t struct may be invalid. *

CVE-2023-6879 [CRITICAL] CVE-2023-6879: aom - Increasing the resolution of video frames, while performing a multi-threaded enc... Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoration_dealloc(). Scope: local bookworm: open bullseye: open forky: resolved (fixed in 3.7.1-1) sid: resolved (fixed in 3.7.1-1) trixie: resolved (fixed in 3.7.1-1)

CVE-2023-39616 [HIGH] CVE-2023-39616: aom - AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access... AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assign_frame_buffer_p in av1/common/av1_common_int.h. Scope: local bookworm: open bullseye: resolved forky: resolved (fixed in 3.7.0-1) sid: resolved (fixed in 3.7.0-1) trixie: resolved (fixed in 3.7.0-1)

CVE-2021-30474 [CRITICAL] CVE-2021-30474: aom - aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-fre... aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2021-30473 [CRITICAL] CVE-2021-30473: aom - aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not loca... aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2021-30475 [CRITICAL] CVE-2021-30475: aom - aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overfl... aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-36129 [HIGH] CVE-2020-36129: aom - AOM v2.0.1 was discovered to contain a stack buffer overflow via the component s... AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aom_image.c. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-0478 [HIGH] CVE-2020-0478: aom - In extend_frame_lowbd of restoration.c, there is a possible out of bounds write ... In extend_frame_lowbd of restoration.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-150780418 Scope: local bookworm: resolved (fixed in 1.0.0.errata1.avif-1

CVE-2020-36133 [HIGH] CVE-2020-36133: aom - AOM v2.0.1 was discovered to contain a global buffer overflow via the component ... AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-36131 [HIGH] CVE-2020-36131: aom - AOM v2.0.1 was discovered to contain a stack buffer overflow via the component s... AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-36135 [MEDIUM] CVE-2020-36135: aom - AOM v2.0.1 was discovered to contain a NULL pointer dereference via the componen... AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-36130 [MEDIUM] CVE-2020-36130: aom - AOM v2.0.1 was discovered to contain a NULL pointer dereference via the componen... AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c. Scope: local bookworm: resolved (fixed in 3.2.0-1) bullseye: resolved (fixed in 1.0.0.errata1-3+deb11u1) forky: resolved (fixed in 3.2.0-1) sid: resolved (fixed in 3.2.0-1) trixie: resolved (fixed in 3.2.0-1)

CVE-2020-36134 [MEDIUM] CVE-2020-36134: aom - AOM v2.0.1 was discovered to contain a segmentation violation via the component ... AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved