MDVSA-2012:023 -- Mandriva libvpxID: oval:org.secpod.oval:def:302854 | Date: (C)2012-12-11 (M)2021-09-11 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in libvpx: VP8 Codec SDK before 1.0.0 Duclair allows remote attackers to cause a denial of service via unspecified corrupt input or by starting decoding from a P-frame, which triggers an out-of-bounds read, related to the clamping of motion vectors in SPLITMV blocks . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2011.0 |
Mandriva Linux 2010.1 |