RedHatRHSA-2010:0999(RHSA-2010:0999) Moderate: libvpx security update
EPSS
Percentile
92.3%
The libvpx packages provide the VP8 SDK, which allows the encoding and
decoding of the VP8 video codec, commonly used with the WebM multimedia
container file format.
An integer overflow flaw, leading to arbitrary memory writes, was found in
libvpx. An attacker could create a specially-crafted video encoded using
the VP8 codec that, when played by a victim with an application using
libvpx (such as Totem), would cause the application to crash or,
potentially, execute arbitrary code. (CVE-2010-4203)
All users of libvpx are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
update, all applications using libvpx must be restarted for the changes to
take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | s390 | libvpx | < 0.9.0-8.el6_0 | libvpx-0.9.0-8.el6_0.s390.rpm |
| RedHat | 6 | ppc64 | libvpx-debuginfo | < 0.9.0-8.el6_0 | libvpx-debuginfo-0.9.0-8.el6_0.ppc64.rpm |
| RedHat | 6 | x86_64 | libvpx-utils | < 0.9.0-8.el6_0 | libvpx-utils-0.9.0-8.el6_0.x86_64.rpm |
| RedHat | 6 | x86_64 | libvpx-devel | < 0.9.0-8.el6_0 | libvpx-devel-0.9.0-8.el6_0.x86_64.rpm |
| RedHat | 6 | src | libvpx | < 0.9.0-8.el6_0 | libvpx-0.9.0-8.el6_0.src.rpm |
| RedHat | 6 | ppc | libvpx | < 0.9.0-8.el6_0 | libvpx-0.9.0-8.el6_0.ppc.rpm |
| RedHat | 6 | s390x | libvpx-utils | < 0.9.0-8.el6_0 | libvpx-utils-0.9.0-8.el6_0.s390x.rpm |
| RedHat | 6 | s390 | libvpx-devel | < 0.9.0-8.el6_0 | libvpx-devel-0.9.0-8.el6_0.s390.rpm |
| RedHat | 6 | s390 | libvpx-debuginfo | < 0.9.0-8.el6_0 | libvpx-debuginfo-0.9.0-8.el6_0.s390.rpm |
| RedHat | 6 | ppc64 | libvpx-utils | < 0.9.0-8.el6_0 | libvpx-utils-0.9.0-8.el6_0.ppc64.rpm |
Related
