CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
PASSIVE
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:P/VC:L/SC:L/VI:H/SI:H/VA:N/SA:N/S:N/AU:N/R:A/V:D
AI Score
Confidence
Low
EPSS
Percentile
9.0%
A heap overflow vulnerability exists in libvpx -Β Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | libvpx | <Β 1.12.0-1+deb12u2 | libvpx_1.12.0-1+deb12u2_all.deb |
Debian | 11 | all | libvpx | <Β 1.9.0-1+deb11u2 | libvpx_1.9.0-1+deb11u2_all.deb |
Debian | 999 | all | libvpx | <Β 1.13.1-2 | libvpx_1.13.1-2_all.deb |
Debian | 13 | all | libvpx | <Β 1.13.1-2 | libvpx_1.13.1-2_all.deb |