CVE-2021-30475: Buffer Overflow
First published: Fri Jun 04 2021(Updated: )
aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Aomedia Aomedia | <2021-03-24 | |
| Fedoraproject Fedora | =34 | |
| ubuntu/aom | <1.0.0. | 1.0.0. |
| debian/aom | <=1.0.0-3 | 1.0.0-3+deb10u1 1.0.0.errata1-3+deb11u1 3.6.0-1 3.8.2-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://aomedia.googlesource.com/aom/+/12adc723acf02633595a4d8da8345742729f46c0
- https://bugs.chromium.org/p/aomedia/issues/detail?id=2999
- https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXCI33HXH6YSOGC2LPE2REQLMIDH6US4/
- https://www.debian.org/security/2023/dsa-5490
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZXCI33HXH6YSOGC2LPE2REQLMIDH6US4/
- https://security.gentoo.org/glsa/202401-32
- https://launchpad.net/bugs/cve/CVE-2021-30475
- https://security-tracker.debian.org/tracker/CVE-2021-30475
- https://ubuntu.com/security/notices/USN-6447-1
- https://www.cve.org/CVERecord?id=CVE-2021-30475
- https://nvd.nist.gov/vuln/detail/CVE-2021-30475
- https://ubuntu.com/security/CVE-2021-30475
Frequently Asked Questions
What is the severity of CVE-2021-30475?
The severity of CVE-2021-30475 is critical, with a severity value of 9.8.
What is the description of CVE-2021-30475?
CVE-2021-30475 is a buffer overflow vulnerability in aom_dsp/noise_model.c in libaom, which is a multimedia codec library.
How does CVE-2021-30475 impact AOMedia?
CVE-2021-30475 can allow an attacker to execute arbitrary code or cause a denial-of-service condition in AOMedia.
How is CVE-2021-30475 fixed?
To fix CVE-2021-30475, it is recommended to update to the latest version of libaom or the affected software.
Where can I find more information about CVE-2021-30475?
More information about CVE-2021-30475 can be found in the references provided: [link1], [link2], [link3].
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/references
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/tags
- collector/nvd-cve
- collector/launchpad-cve
- source/Launchpad
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/aomedia
- canonical/aomedia aomedia
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/34
- package-manager/debian
- package-manager/ubuntu