VulnerableCode Package Details - pkg:deb/debian/libvpx@1.6.1-3%2Bdeb9u2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libvpx@1.6.1-3%2Bdeb9u2

Essentials
History (57)

purl	pkg:deb/debian/libvpx@1.6.1-3%2Bdeb9u2

Next non-vulnerable version	1.12.0-1+deb12u4
Latest non-vulnerable version	1.12.0-1+deb12u4
Risk	10.0

Vulnerabilities affecting this package (12)

Vulnerability	Summary	Fixed by
VCID-59n6-fj5x-33gn Aliases: CVE-2019-9232	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	1.7.0-3+deb10u1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7s5h-zrax-hkcv Aliases: CVE-2020-0034	libvpx: Out of bounds read in vp8_decode_frame in decodeframe.c	1.7.0-3+deb10u1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-8vka-qus2-tbhj Aliases: CVE-2026-2447	Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.	1.12.0-1+deb12u4 Affected by 0 other vulnerabilities.
VCID-98mt-7srw-qfh4 Aliases: CVE-2025-5283	A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code.	1.12.0-1+deb12u4 Affected by 0 other vulnerabilities.
VCID-djwx-su1m-57h4 Aliases: CVE-2019-9433	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	1.7.0-3+deb10u1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f81v-9fv8-93cd Aliases: CVE-2023-5217 GHSA-qqvq-6xgj-jw8g	Out-of-bounds Write Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-hhsp-7swr-qybd Aliases: CVE-2017-13194	security update	1.7.0-3+deb10u1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kuxu-ty5p-8qbf Aliases: CVE-2023-6349	libvpx: Heap buffer overflow related to VP9 encoding	1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-mcab-z6qn-gkds Aliases: CVE-2023-44488	Multiple vulnerabilities have been discovered in libvpx, the worst of which could result in arbitrary code execution.	1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-txwy-bkhg-9qfv Aliases: CVE-2019-9325	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	1.7.0-3+deb10u1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ut2r-gvwc-4ydu Aliases: CVE-2019-9371	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-veqq-773w-1ba9 Aliases: CVE-2024-5197	libvpx: Integer overflow in vpx_img_alloc()	1.9.0-1+deb11u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-59n6-fj5x-33gn	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	CVE-2019-9232
VCID-djwx-su1m-57h4	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	CVE-2019-9433
VCID-hhsp-7swr-qybd	security update	CVE-2017-13194
VCID-txwy-bkhg-9qfv	Multiple vulnerabilities have been found in libvpx, the worst of which could result in the execution of arbitrary code.	CVE-2019-9325

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:38:59.233630+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:22:21.054206+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:17:51.970917+00:00	Debian Oval Importer	Affected by	VCID-ut2r-gvwc-4ydu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:59:42.738687+00:00	Debian Oval Importer	Affected by	VCID-kuxu-ty5p-8qbf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:31:28.107192+00:00	Debian Oval Importer	Affected by	VCID-f81v-9fv8-93cd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:51:44.944031+00:00	Debian Oval Importer	Affected by	VCID-7s5h-zrax-hkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:30:35.131942+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:06:44.788626+00:00	Debian Oval Importer	Affected by	VCID-98mt-7srw-qfh4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:10:40.723724+00:00	Debian Oval Importer	Affected by	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:16:29.530475+00:00	Debian Oval Importer	Affected by	VCID-veqq-773w-1ba9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:40:39.580824+00:00	Debian Oval Importer	Affected by	VCID-8vka-qus2-tbhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:18:17.934876+00:00	Debian Oval Importer	Affected by	VCID-mcab-z6qn-gkds	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:53:59.732121+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:52:08.148793+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:51:08.624287+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:31:12.921540+00:00	Debian Oval Importer	Fixing	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:28:39.546098+00:00	Debian Oval Importer	Fixing	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:18:25.528797+00:00	Debian Oval Importer	Fixing	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:14:37.191828+00:00	Debian Oval Importer	Fixing	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-12T00:11:54.212534+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:55:53.586538+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:51:30.810243+00:00	Debian Oval Importer	Affected by	VCID-ut2r-gvwc-4ydu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:33:54.719268+00:00	Debian Oval Importer	Affected by	VCID-kuxu-ty5p-8qbf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:06:42.804262+00:00	Debian Oval Importer	Affected by	VCID-f81v-9fv8-93cd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:28:17.681187+00:00	Debian Oval Importer	Affected by	VCID-7s5h-zrax-hkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:09:40.422706+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:48:20.303254+00:00	Debian Oval Importer	Affected by	VCID-98mt-7srw-qfh4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:57:12.826016+00:00	Debian Oval Importer	Affected by	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:03:49.838734+00:00	Debian Oval Importer	Affected by	VCID-veqq-773w-1ba9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:28:29.323082+00:00	Debian Oval Importer	Affected by	VCID-8vka-qus2-tbhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:06:35.061901+00:00	Debian Oval Importer	Affected by	VCID-mcab-z6qn-gkds	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:42:14.570998+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:40:22.795432+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:39:22.739016+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:19:30.683246+00:00	Debian Oval Importer	Fixing	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T14:16:59.006461+00:00	Debian Oval Importer	Fixing	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T14:06:55.970194+00:00	Debian Oval Importer	Fixing	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T14:03:09.444740+00:00	Debian Oval Importer	Fixing	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-08T23:42:57.387173+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:27:40.768091+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:23:31.279198+00:00	Debian Oval Importer	Affected by	VCID-ut2r-gvwc-4ydu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:06:37.486743+00:00	Debian Oval Importer	Affected by	VCID-kuxu-ty5p-8qbf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:40:24.782497+00:00	Debian Oval Importer	Affected by	VCID-f81v-9fv8-93cd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:04:03.821976+00:00	Debian Oval Importer	Affected by	VCID-7s5h-zrax-hkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:48:41.236516+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:31:01.199028+00:00	Debian Oval Importer	Affected by	VCID-98mt-7srw-qfh4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:46:52.200177+00:00	Debian Oval Importer	Affected by	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:56:41.143411+00:00	Debian Oval Importer	Affected by	VCID-veqq-773w-1ba9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:22:50.621155+00:00	Debian Oval Importer	Affected by	VCID-8vka-qus2-tbhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:01:56.768662+00:00	Debian Oval Importer	Affected by	VCID-mcab-z6qn-gkds	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:15:12.262603+00:00	Debian Oval Importer	Affected by	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:13:24.106118+00:00	Debian Oval Importer	Affected by	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:12:26.557694+00:00	Debian Oval Importer	Affected by	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T22:53:12.247312+00:00	Debian Oval Importer	Fixing	VCID-59n6-fj5x-33gn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:50:44.245709+00:00	Debian Oval Importer	Fixing	VCID-djwx-su1m-57h4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:40:57.909177+00:00	Debian Oval Importer	Fixing	VCID-hhsp-7swr-qybd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:37:26.123400+00:00	Debian Oval Importer	Fixing	VCID-txwy-bkhg-9qfv	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0