Debian Libvpx vulnerabilities

CVE-2026-2447 [HIGH] CVE-2026-2447: firefox - Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Fi... Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2. Scope: local sid: resolved (fixed in 147.0.4-1)

CVE-2025-5283 [MEDIUM] CVE-2025-5283: chromium - Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remot... Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 137.0.7151.55-3~deb12u1) bullseye: open forky: resolved (fixed in 137.0.7151.55-1) sid: resolved (fixed in 137.0.7151.55-1) trixie: r

CVE-2024-5197 [MEDIUM] CVE-2024-5197: libvpx - There exists interger overflows in libvpx in versions prior to 1.14.1. Calling v... There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_ali

CVE-2023-5217 [HIGH] CVE-2023-5217: chromium - Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5... Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 117.0.5938.132-1~deb12u1) bullseye: resolved (fixed in 117.0.5938.132-1~deb11u1) forky: resolved

CVE-2023-44488 [HIGH] CVE-2023-44488: libvpx - VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to enc... VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. Scope: local bookworm: resolved (fixed in 1.12.0-1+deb12u2) bullseye: resolved (fixed in 1.9.0-1+deb11u2) forky: resolved (fixed in 1.12.0-1.2) sid: resolved (fixed in 1.12.0-1.2) trixie: resolved (fixed in 1.12.0-1.2)

CVE-2023-6349 [MEDIUM] CVE-2023-6349: libvpx - A heap overflow vulnerability exists in libvpx - Encoding a frame that has large... A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above Scope: local bookworm: resolved (fixed in 1.12.0-1+deb12u2) bullseye: resolved (fixed in 1.9.0-1+deb11u2) forky: resolved (fixed in 1.13.1-2

CVE-2020-0034 [HIGH] CVE-2020-0034: libvpx - In vp8_decode_frame of decodeframe.c, there is a possible out of bounds read due... In vp8_decode_frame of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1Android ID: A-62458770 Scope:

CVE-2019-9232 [HIGH] CVE-2019-9232: libvpx - In libvpx, there is a possible out of bounds read due to a missing bounds check.... In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-122675483 Scope: local bookworm: resolved (fixed in 1.8.1-2) bullseye: resolved (fixed in 1.8.

CVE-2019-9325 [MEDIUM] CVE-2019-9325: libvpx - In libvpx, there is a possible out of bounds read due to a missing bounds check.... In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112001302 Scope: local bookworm: resolved (fixed in 1.8.1-2) bullseye: resolved (fixed in 1.8.1-

CVE-2019-9433 [MEDIUM] CVE-2019-9433: libvpx - In libvpx, there is a possible information disclosure due to improper input vali... In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80479354 Scope: local bookworm: resolved (fixed in 1.8.1-2) bullseye: resolved (fixed in

CVE-2019-9371 [MEDIUM] CVE-2019-9371: libvpx - In libvpx, there is a possible resource exhaustion due to improper input validat... In libvpx, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-132783254 Scope: local bookworm: resolved (fixed in 1.8.1-2) bullseye: resolved (fixed in 1.8.1-2

CVE-2017-13194 [HIGH] CVE-2017-13194: libvpx - A vulnerability in the Android media framework (libvpx) related to odd frame wid... A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201. Scope: local bookworm: resolved (fixed in 1.7.0-2) bullseye: resolved (fixed in 1.7.0-2) forky: resolved (fixed in 1.7.0-2) sid: resolved (fixed in 1.7.0-2) trixie: resolved (fixed in 1.7.0-2)

CVE-2017-0393 [MEDIUM] CVE-2017-0393: libvpx - A denial of service vulnerability in libvpx in Mediaserver could enable a remote... A denial of service vulnerability in libvpx in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1. Android ID: A-30436808. Scope: local bookworm: resolved (fixed

CVE-2016-1621 [CRITICAL] CVE-2016-1621: libvpx - libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and ... libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.0 before 2016-03-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, related to libwebm/mkvparser.cpp and other files, aka internal bug 23452792. Scope: local bookworm: resolved (fixed in 1.6.1-1) bullseye: re

CVE-2016-2464 [HIGH] CVE-2016-2464: libvpx - libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2... libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted mkv file, aka internal bug 23167726. Scope: local bookworm: resolved (fixed in 1.6.1-1) bullseye: resolved (fixed in 1.6.1-1) fork

CVE-2016-3881 [MEDIUM] CVE-2016-3881: libvpx - The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx in mediase... The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows remote attackers to cause a denial of service (buffer over-read, and device hang or reboot) via a crafted media file, aka internal bug 30013856. Scope: local b

CVE-2016-6711 [MEDIUM] CVE-2016-6711: libvpx - A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x... A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593765. Scope: local

CVE-2016-6712 [MEDIUM] CVE-2016-6712: libvpx - A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x... A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593752. Scope: local

CVE-2016-1972 [HIGH] CVE-2016-1972: libvpx - Race condition in libvpx in Mozilla Firefox before 45.0 on Windows might allow r... Race condition in libvpx in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via unknown vectors. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2015-4486 [CRITICAL] CVE-2015-4486: libvpx - The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Fir... The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via malformed WebM video data. Scope: local bookworm: resolved (fixed in 1.4.0-1) bullseye: resolved (fixed in 1.4.0-1) forky: resolved (fixed in 1.4.0-1) sid: r