ALT-PU-2024-17724-1
Closed vulnerabilities
Published: 2024-06-04
BDU:2024-04531
Уязвимость функции vpx_img_alloc() библиотеки кодирования/декодирования видео libvpx, позволяющая нарушителю выполнить произвольный код
Severity: HIGH (7.1)
Vector: AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2024-06-03
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2024-5197
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. We recommend upgrading to version 1.14.1 or beyond
References: