What is the severity of REDHAT-BUG-2241806?

The severity of REDHAT-BUG-2241806 is classified as critical due to the potential for crashes during encoding.

How do I fix REDHAT-BUG-2241806?

To fix REDHAT-BUG-2241806, update libvpx to version 1.13.1 or later.

What software is affected by REDHAT-BUG-2241806?

The affected software for REDHAT-BUG-2241806 is libvpx versions prior to 1.13.1.

What kind of vulnerability is REDHAT-BUG-2241806?

REDHAT-BUG-2241806 is a vulnerability that involves mishandling widths in VP9 leading to crashes.

Is there an upstream patch available for REDHAT-BUG-2241806?

Yes, there is an upstream patch available in the code repository for libvpx addressing REDHAT-BUG-2241806.

Vulnerability/
REDHAT-BUG-2241806

high

2/10/2023

30/10/2023

REDHAT-BUG-2241806

First published: Mon Oct 02 2023(Updated: )

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. Reference: <a href="https://github.com/advisories/GHSA-wc24-pw3j-j6vw">https://github.com/advisories/GHSA-wc24-pw3j-j6vw</a> Upstream patch: <a href="https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f">https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f</a>

Affected Software	Affected Version	How to fix
WebM Project libvpx	<1.13.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-2241806?
The severity of REDHAT-BUG-2241806 is classified as critical due to the potential for crashes during encoding.
How do I fix REDHAT-BUG-2241806?
To fix REDHAT-BUG-2241806, update libvpx to version 1.13.1 or later.
What software is affected by REDHAT-BUG-2241806?
The affected software for REDHAT-BUG-2241806 is libvpx versions prior to 1.13.1.
What kind of vulnerability is REDHAT-BUG-2241806?
REDHAT-BUG-2241806 is a vulnerability that involves mishandling widths in VP9 leading to crashes.
Is there an upstream patch available for REDHAT-BUG-2241806?
Yes, there is an upstream patch available in the code repository for libvpx addressing REDHAT-BUG-2241806.

agent/references
agent/type
agent/last-modified-date
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-44488
agent/severity
agent/description
agent/event
agent/source
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/webmproject
canonical/webm project libvpx

Frequently Asked Questions

What is the severity of REDHAT-BUG-2241806?
The severity of REDHAT-BUG-2241806 is classified as critical due to the potential for crashes during encoding.
How do I fix REDHAT-BUG-2241806?
To fix REDHAT-BUG-2241806, update libvpx to version 1.13.1 or later.
What software is affected by REDHAT-BUG-2241806?
The affected software for REDHAT-BUG-2241806 is libvpx versions prior to 1.13.1.
What kind of vulnerability is REDHAT-BUG-2241806?
REDHAT-BUG-2241806 is a vulnerability that involves mishandling widths in VP9 leading to crashes.
Is there an upstream patch available for REDHAT-BUG-2241806?
Yes, there is an upstream patch available in the code repository for libvpx addressing REDHAT-BUG-2241806.

REDHAT-BUG-2241806

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-2241806?

How do I fix REDHAT-BUG-2241806?

What software is affected by REDHAT-BUG-2241806?

What kind of vulnerability is REDHAT-BUG-2241806?

Is there an upstream patch available for REDHAT-BUG-2241806?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of REDHAT-BUG-2241806?

How do I fix REDHAT-BUG-2241806?

What software is affected by REDHAT-BUG-2241806?

What kind of vulnerability is REDHAT-BUG-2241806?

Is there an upstream patch available for REDHAT-BUG-2241806?