CVE-2024-5197 | Chromium libvpx up to 1.14.0 vpx_img_alloc d_w/d_h/align integer overflow

Inserito da Angelo Barbosa | Giu 3, 2024 | CVE

A vulnerability was found in Chromium libvpx up to 1.14.0. It has been rated as critical. Affected by this issue is the function vpx_img_alloc. The manipulation of the argument d_w/d_h/align leads to integer overflow.

This vulnerability is handled as CVE-2024-5197. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5197 | Chromium libvpx up to 1.14.0 vpx_img_alloc d_w/d_h/align integer overflow

Post correlati

CVE-2024-31803 | emp-ot 0.2.4 read_pre_data128_from_file buffer overflow

CVE-2024-0904 | Fancy Product Designer Plugin up to 6.1.80 on WordPress Setting cross site scripting

CVE-2024-47139 | F5 BIG-IQ up to 8.2.0.0 Configuration Utility cross site scripting (K000141080)

CVE-2024-41086 | Linux Kernel up to 6.9.7 bcachefs bch2_sb_downgrade_validate (bf920ed92ef2/692aa7a54b2b)