Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/aom@3.6.0-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/aom@3.6.0-1%2Bdeb12u2?distro=trixie
Next non-vulnerable version 3.7.0-1
Latest non-vulnerable version 3.13.1-2
Risk 4.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-5xn1-ucsu-ufbh
Aliases:
CVE-2023-6879
aom: heap-buffer-overflow on frame size change
3.7.1-1
Affected by 0 other vulnerabilities.
3.12.1-1
Affected by 0 other vulnerabilities.
3.13.1-2
Affected by 0 other vulnerabilities.
VCID-em18-qcj8-dfgj
Aliases:
CVE-2023-39616
AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assign_frame_buffer_p in av1/common/av1_common_int.h.
3.7.0-1
Affected by 0 other vulnerabilities.
3.12.1-1
Affected by 0 other vulnerabilities.
3.13.1-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (11)
Vulnerability Summary Aliases
VCID-42kw-yczz-q7f9 Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2021-30474
VCID-5d1t-g3nx-5fd6 In extend_frame_lowbd of restoration.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-150780418 CVE-2020-0478
VCID-d9tp-unv2-5udk Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36131
VCID-ed5k-acd1-27hn Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2021-30475
VCID-ew9c-7ne9-uuhg Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36135
VCID-f1s7-8k6q-cbbt Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36130
VCID-m3v4-ezbn-c7hz Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36133
VCID-pnux-7kf8-9uaq libaom: Integer overflow in internal function img_alloc_helper CVE-2024-5171
VCID-s4pu-gycq-rbbw Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36129
VCID-ubxj-qpy9-sygk Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2020-36134
VCID-ytsf-k9ep-17h3 Multiple vulnerabilities have been discovered in libaom, the worst of which can lead to remote code execution. CVE-2021-30473

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:51:18.331522+00:00 Debian Importer Fixing VCID-42kw-yczz-q7f9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:49:06.807568+00:00 Debian Importer Fixing VCID-s4pu-gycq-rbbw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:10:59.865984+00:00 Debian Importer Fixing VCID-ytsf-k9ep-17h3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:07:26.818980+00:00 Debian Importer Fixing VCID-m3v4-ezbn-c7hz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:26:32.854395+00:00 Debian Importer Fixing VCID-f1s7-8k6q-cbbt https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:54:39.579988+00:00 Debian Importer Fixing VCID-d9tp-unv2-5udk https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:50:42.816472+00:00 Debian Importer Fixing VCID-ed5k-acd1-27hn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:17:53.137987+00:00 Debian Importer Fixing VCID-ew9c-7ne9-uuhg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:17:18.278862+00:00 Debian Importer Fixing VCID-ubxj-qpy9-sygk https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:58:42.961458+00:00 Debian Importer Fixing VCID-pnux-7kf8-9uaq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:49:21.919765+00:00 Debian Importer Fixing VCID-42kw-yczz-q7f9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:47:43.048372+00:00 Debian Importer Fixing VCID-s4pu-gycq-rbbw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:19:58.940352+00:00 Debian Importer Fixing VCID-ytsf-k9ep-17h3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:17:24.498908+00:00 Debian Importer Fixing VCID-m3v4-ezbn-c7hz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:47:44.581186+00:00 Debian Importer Fixing VCID-f1s7-8k6q-cbbt https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:23:42.115815+00:00 Debian Importer Fixing VCID-d9tp-unv2-5udk https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:34:52.882091+00:00 Debian Importer Fixing VCID-ed5k-acd1-27hn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:12:46.208266+00:00 Debian Importer Fixing VCID-ew9c-7ne9-uuhg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:12:23.827068+00:00 Debian Importer Fixing VCID-ubxj-qpy9-sygk https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:01:19.380571+00:00 Debian Importer Fixing VCID-pnux-7kf8-9uaq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:19:40.076214+00:00 Debian Importer Affected by VCID-5xn1-ucsu-ufbh https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:19:40.048332+00:00 Debian Importer Affected by VCID-em18-qcj8-dfgj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:19:39.881173+00:00 Debian Importer Fixing VCID-5d1t-g3nx-5fd6 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:16:19.064593+00:00 Debian Importer Fixing VCID-42kw-yczz-q7f9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:16:15.053247+00:00 Debian Importer Fixing VCID-s4pu-gycq-rbbw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:14:01.576967+00:00 Debian Importer Fixing VCID-ytsf-k9ep-17h3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:13:48.300132+00:00 Debian Importer Fixing VCID-m3v4-ezbn-c7hz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:11:37.994590+00:00 Debian Importer Fixing VCID-f1s7-8k6q-cbbt https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:09:49.858390+00:00 Debian Importer Fixing VCID-d9tp-unv2-5udk https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:06:07.009508+00:00 Debian Importer Fixing VCID-ed5k-acd1-27hn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:04:28.457657+00:00 Debian Importer Fixing VCID-ew9c-7ne9-uuhg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:04:26.335360+00:00 Debian Importer Fixing VCID-ubxj-qpy9-sygk https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:03:25.920714+00:00 Debian Importer Fixing VCID-pnux-7kf8-9uaq https://security-tracker.debian.org/tracker/data/json 38.1.0