Search for packages
| purl | pkg:deb/debian/libvpx@1.12.0-1%2Bdeb12u4?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4mzm-67bs-d3h9 | libvpx: VP8 Codec decoder crash introduced in 0.9.7 |
CVE-2012-0823
|
| VCID-4xgr-unyn-jkfj | security update |
CVE-2014-1578
|
| VCID-59n6-fj5x-33gn | Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
CVE-2019-9232
|
| VCID-5bx8-w9sb-1bbs | libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted mkv file, aka internal bug 23167726. |
CVE-2016-2464
|
| VCID-5n7c-tqzz-nfha | Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
CVE-2016-1621
|
| VCID-7nng-abc2-fuep | Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. |
CVE-2016-1972
|
| VCID-7s5h-zrax-hkcv | libvpx: Out of bounds read in vp8_decode_frame in decodeframe.c |
CVE-2020-0034
|
| VCID-8vka-qus2-tbhj | Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2. |
CVE-2026-2447
|
| VCID-98mt-7srw-qfh4 | A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code. |
CVE-2025-5283
|
| VCID-d1xs-2tfm-2ud6 | libvpx: Signedness error in partition size check |
CVE-2010-4489
|
| VCID-djwx-su1m-57h4 | Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
CVE-2019-9433
|
| VCID-f81v-9fv8-93cd | Out-of-bounds Write Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
CVE-2023-5217
GHSA-qqvq-6xgj-jw8g |
| VCID-hhsp-7swr-qybd | security update |
CVE-2017-13194
|
| VCID-hkfy-wbqn-sba8 | A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593752. |
CVE-2016-6712
|
| VCID-kuxu-ty5p-8qbf | libvpx: Heap buffer overflow related to VP9 encoding |
CVE-2023-6349
|
| VCID-mcab-z6qn-gkds | Multiple vulnerabilities have been discovered in libvpx, the worst of which could result in arbitrary code execution. |
CVE-2023-44488
|
| VCID-nw6w-7x8f-x7fw | The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows remote attackers to cause a denial of service (buffer over-read, and device hang or reboot) via a crafted media file, aka internal bug 30013856. |
CVE-2016-3881
|
| VCID-qcyp-en6e-vya2 | libvpx: Denial of service in mediaserver |
CVE-2017-0393
|
| VCID-qjuf-f8ec-byc7 | security update |
CVE-2015-4506
|
| VCID-s76d-pjvk-63cr | Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. |
CVE-2015-4485
|
| VCID-tbkw-k4a7-43fp | Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. |
CVE-2015-4486
|
| VCID-txwy-bkhg-9qfv | Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
CVE-2019-9325
|
| VCID-ut2r-gvwc-4ydu | Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
CVE-2019-9371
|
| VCID-veqq-773w-1ba9 | libvpx: Integer overflow in vpx_img_alloc() |
CVE-2024-5197
|
| VCID-wdvt-pdhd-a7gt | Timothy B. Terriberry discovered that libvpx contains an integer overflow vulnerability in the processing of video streams that may allow user-assisted execution of arbitrary code. |
CVE-2010-4203
|
| VCID-wg9d-bt6y-6yfd | A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593765. |
CVE-2016-6711
|
| VCID-yhw4-v629-jye8 | Multiple vulnerabilities have been fixed in Chromium, the worst of which can cause arbitrary remote code execution. |
CVE-2015-1258
|