| Summary: | libvpx new security issue CVE-2024-5197 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Nicolas Salguero <nicolas.salguero> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | andrewsfarm, sysadmin-bugs |
| Version: | 9 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA9-64-OK | ||
| Source RPM: | libvpx-1.12.0-1.2.mga9.src.rpm | CVE: | CVE-2024-5197 |
| Status comment: | |||
|
Description
Nicolas Salguero
2024-06-10 10:20:11 CEST
Nicolas Salguero
2024-06-10 10:20:52 CEST
Whiteboard:
(none) =>
MGA9TOO Suggested advisory: ======================== The updated packages fix a security vulnerability: There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. (CVE-2024-5197) References: https://ubuntu.com/security/notices/USN-6814-1 ======================== Updated packages in core/updates_testing: ======================== lib(64)vpx7-1.12.0-1.3.mga9 lib(64)vpx-devel-1.12.0-1.3.mga9 libvpx-utils-1.12.0-1.3.mga9 from SRPM: libvpx-1.12.0-1.3.mga9.src.rpm Assignee:
pkg-bugs =>
qa-bugs
katnatek
2024-06-13 19:46:54 CEST
Keywords:
(none) =>
advisory RH mageia 9 x86_64
LC_ALL=C urpmi --auto --auto-update
medium "QA Testing (64-bit)" is up-to-date
medium "QA Testing (32-bit)" is up-to-date
medium "Core Release (distrib1)" is up-to-date
medium "Core Updates (distrib3)" is up-to-date
medium "Nonfree Release (distrib11)" is up-to-date
medium "Nonfree Updates (distrib13)" is up-to-date
medium "Tainted Release (distrib21)" is up-to-date
medium "Tainted Updates (distrib23)" is up-to-date
medium "Core 32bit Release (distrib31)" is up-to-date
medium "Core 32bit Updates (distrib32)" is up-to-date
medium "Nonfree 32bit Release (distrib36)" is up-to-date
medium "Tainted 32bit Release (distrib41)" is up-to-date
medium "Tainted 32bit Updates (distrib42)" is up-to-date
installing lib64vpx7-1.12.0-1.3.mga9.x86_64.rpm from //home/katnatek/qa-testing/x86_64
Preparing... ##################################################################################################
1/1: lib64vpx7 ##################################################################################################
1/1: removing lib64vpx7-1.12.0-1.2.mga9.x86_64
##################################################################################################
LC_ALL=C urpmi libvpx-utils
installing libvpx-utils-1.12.0-1.3.mga9.x86_64.rpm from //home/katnatek/qa-testing/x86_64
Preparing... ##################################################################################################
1/1: libvpx-utils ##################################################################################################
References bug#32586 comment#4 and bug#25789 comment#5
Convert video to mkv with vo9 as video codec
Play result with vlc
strace mpv video.mkv show the library is opened
openat(AT_FDCWD, "/lib64/libvpx.so.7", O_RDONLY|O_CLOEXEC) = 3
The video play withot issues
strace mplayer video.mkv show the library is openend
openat(AT_FDCWD, "/lib64/libvpx.so.7", O_RDONLY|O_CLOEXEC) = 3
The video play without issuesCC:
(none) =>
andrewsfarm (In reply to katnatek from comment #3) > Convert video to mkv with vo9 as video codec vo9 -> vp9 Validating. CC:
(none) =>
sysadmin-bugs An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2024-0221.html Status:
ASSIGNED =>
RESOLVED |