First published: Wed Nov 01 2023(Updated: )
USN-6403-1 fixed several vulnerabilities in libvpx. This update provides the corresponding update for Ubuntu 16.04 LTS. Original advisory details: It was discovered that libvpx did not properly handle certain malformed media files. If an application using libvpx opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libvpx3 | <1.5.0-2ubuntu1.1+esm2 | 1.5.0-2ubuntu1.1+esm2 |
=16.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this advisory is USN-6403-3.
libvpx3 version 1.5.0-2ubuntu1.1+esm2 on Ubuntu 16.04 LTS is affected by this vulnerability.
The severity of this vulnerability is not specified in the advisory.
Upgrade libvpx3 to version 1.5.0-2ubuntu1.1+esm2 or later to fix this vulnerability.
You can find more information about this vulnerability in the advisory at the following link: [USN-6403-3](https://ubuntu.com/security/notices/USN-6403-1).