pkg:Debian/libvpx
41 total CVEsCRITICAL5HIGH19MEDIUM10
✅ Check your installed version
All known vulnerabilities
- from 0, < 1.9.0-1+deb11u1
- from 0, < 1.9.0-1+deb11u1
- CRITICAL9.8CVE-2016-1621libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.0 before 2016-03-01 allows remote attackers to execute ar…from 0, < 1.6.1-1
- CRITICAL9.8CVE-2010-4203WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of…from 0, < 0.9.1-2
- from 0, < 1.7.0-3+deb10u3
- from 0, < 1.9.0-1+deb11u3
- from 0, < 1.9.0-1+deb11u3
- from 0, < 1.9.0-1+deb11u5
- from 0, < 1.12.0-1+deb12u5
- from 0, < 1.9.0-1+deb11u5
- HIGH7.8CVE-2016-2464libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remo…from 0, < 1.6.1-1
- HIGH7.5CVE-2023-6349A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 m…from 0, < 1.9.0-1+deb11u2
- from 0, < 1.7.0-3+deb10u2
- from 0, < 1.9.0-1+deb11u2
- from 0, < 1.9.0-1+deb11u2
- from 0, < 1.6.1-3+deb9u3
- from 0, < 1.7.0-3
- from 0, < 1.3.0-3+deb8u3
- from 0, < 1.3.0-3+deb8u2
- from 0, < 1.8.1-2
- from 0, < 1.6.1-3+deb9u2
- from 0, < 1.7.0-2
- from 0, < 1.1.0-1+deb7u1
- from 0, < 1.3.0-3+deb8u1
- MEDIUM6.5CVE-2019-9433In libvpx, there is a possible information disclosure due to improper input validation.from 0, < 1.8.1-2
- MEDIUM6.5CVE-2019-9371In libvpx, there is a possible resource exhaustion due to improper input validation.from 0, < 1.8.1-2
- MEDIUM6.5CVE-2019-9325In libvpx, there is a possible out of bounds read due to a missing bounds check.from 0, < 1.8.1-2
- MEDIUM5.5CVE-2017-0393A denial of service vulnerability in libvpx in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device…from 0, < 1.6.1-1
- MEDIUM5.5CVE-2016-6712A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and…from 0, < 1.6.1-1
- MEDIUM5.5CVE-2016-6711A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and…from 0, < 1.6.1-1
- MEDIUM5.5CVE-2016-3881The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x…from 0, < 1.6.1-1
- from 0, < 1.9.0-1+deb11u4
- from 0, < 1.12.0-1+deb12u4
- from 0, < 1.9.0-1+deb11u4
- —CVE-2015-4506Buffer overflow in the vp9_init_context_buffers function in libvpx, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3…from 0, < 1.4.0-4
- —CVE-2015-4486The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execut…from 0, < 1.4.0-1
- —CVE-2015-4485Heap-based buffer overflow in the resize_context_buffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2…from 0, < 1.4.0-1
- —CVE-2015-1258Google Chrome before 43.0.2357.65 relies on libvpx code that was not built with an appropriate --size-limit value, which allows remote atta…from 0, < 1.4.0-4
- —CVE-2014-1578The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attacker…from 0, < 1.3.0-3
- —CVE-2012-0823VP8 Codec SDK (libvpx) before 1.0.0 "Duclair" allows remote attackers to cause a denial of service (application crash) via (1) unspecified…from 0, < 1.0.0-1
- —CVE-2010-4489libvpx, as used in Google Chrome before 8.0.552.215 and possibly other products, allows remote attackers to cause a denial of service (out-…from 0, < 0.9.5-1