ALT-PU-2024-4636-3
Closed vulnerabilities
Published: 2023-05-10
Modified: 2025-01-28
Modified: 2025-01-28
CVE-2023-32570
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.
Severity: MEDIUM (5.9)
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- https://code.videolan.org/videolan/dav1d/-/commit/cf617fdae0b9bfabd27282854c8e81450d955efa
- https://code.videolan.org/videolan/dav1d/-/commit/cf617fdae0b9bfabd27282854c8e81450d955efa
- https://code.videolan.org/videolan/dav1d/-/tags/1.2.0
- https://code.videolan.org/videolan/dav1d/-/tags/1.2.0
- FEDORA-2023-652b6e8847
- FEDORA-2023-652b6e8847
- FEDORA-2023-9ea5d6e289
- FEDORA-2023-9ea5d6e289
- GLSA-202310-05
- GLSA-202310-05