Search for packages
| purl | pkg:deb/debian/libvpx@1.3.0-3 |
| Next non-vulnerable version | 1.12.0-1+deb12u4 |
| Latest non-vulnerable version | 1.12.0-1+deb12u4 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-59n6-fj5x-33gn
Aliases: CVE-2019-9232 |
Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
Affected by 12 other vulnerabilities. Affected by 10 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-5bx8-w9sb-1bbs
Aliases: CVE-2016-2464 |
libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted mkv file, aka internal bug 23167726. |
Affected by 12 other vulnerabilities. |
|
VCID-5n7c-tqzz-nfha
Aliases: CVE-2016-1621 |
Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. |
Affected by 12 other vulnerabilities. |
|
VCID-7s5h-zrax-hkcv
Aliases: CVE-2020-0034 |
libvpx: Out of bounds read in vp8_decode_frame in decodeframe.c |
Affected by 10 other vulnerabilities. |
|
VCID-8vka-qus2-tbhj
Aliases: CVE-2026-2447 |
Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2. |
Affected by 0 other vulnerabilities. |
|
VCID-98mt-7srw-qfh4
Aliases: CVE-2025-5283 |
A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code. |
Affected by 0 other vulnerabilities. |
|
VCID-djwx-su1m-57h4
Aliases: CVE-2019-9433 |
Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
Affected by 12 other vulnerabilities. Affected by 10 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-f81v-9fv8-93cd
Aliases: CVE-2023-5217 GHSA-qqvq-6xgj-jw8g |
Out-of-bounds Write Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
Affected by 2 other vulnerabilities. |
|
VCID-hhsp-7swr-qybd
Aliases: CVE-2017-13194 |
security update |
Affected by 22 other vulnerabilities. Affected by 12 other vulnerabilities. Affected by 10 other vulnerabilities. |
|
VCID-hkfy-wbqn-sba8
Aliases: CVE-2016-6712 |
A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593752. |
Affected by 12 other vulnerabilities. |
|
VCID-kuxu-ty5p-8qbf
Aliases: CVE-2023-6349 |
libvpx: Heap buffer overflow related to VP9 encoding |
Affected by 2 other vulnerabilities. |
|
VCID-mcab-z6qn-gkds
Aliases: CVE-2023-44488 |
Multiple vulnerabilities have been discovered in libvpx, the worst of which could result in arbitrary code execution. |
Affected by 2 other vulnerabilities. |
|
VCID-nw6w-7x8f-x7fw
Aliases: CVE-2016-3881 |
The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows remote attackers to cause a denial of service (buffer over-read, and device hang or reboot) via a crafted media file, aka internal bug 30013856. |
Affected by 12 other vulnerabilities. |
|
VCID-qcyp-en6e-vya2
Aliases: CVE-2017-0393 |
libvpx: Denial of service in mediaserver |
Affected by 12 other vulnerabilities. |
|
VCID-qjuf-f8ec-byc7
Aliases: CVE-2015-4506 |
security update |
Affected by 18 other vulnerabilities. |
|
VCID-s76d-pjvk-63cr
Aliases: CVE-2015-4485 |
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. |
Affected by 18 other vulnerabilities. |
|
VCID-tbkw-k4a7-43fp
Aliases: CVE-2015-4486 |
Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. |
Affected by 18 other vulnerabilities. |
|
VCID-txwy-bkhg-9qfv
Aliases: CVE-2019-9325 |
Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
Affected by 12 other vulnerabilities. Affected by 10 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-ut2r-gvwc-4ydu
Aliases: CVE-2019-9371 |
Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code. |
Affected by 2 other vulnerabilities. |
|
VCID-veqq-773w-1ba9
Aliases: CVE-2024-5197 |
libvpx: Integer overflow in vpx_img_alloc() |
Affected by 2 other vulnerabilities. |
|
VCID-wg9d-bt6y-6yfd
Aliases: CVE-2016-6711 |
A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593765. |
Affected by 12 other vulnerabilities. |
|
VCID-yhw4-v629-jye8
Aliases: CVE-2015-1258 |
Multiple vulnerabilities have been fixed in Chromium, the worst of which can cause arbitrary remote code execution. |
Affected by 18 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4xgr-unyn-jkfj | security update |
CVE-2014-1578
|