CVE-2024-5197
CRITICALlibvpx < 1.14.1 - Integer Overflow via vpx_img_alloc or vpx_img_wrap
Title source: llmDescription
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap() with a large value of the d_w, d_h, or stride_align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. We recommend upgrading to version 1.14.1 or beyond
References (2)
Core 2
Core References
Exploit, Issue Tracking
https://g-issues.chromium.org/issues/332382766
Mailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/06/msg00005.html
Scores
CVSS v3
9.1
EPSS
0.0032
EPSS Percentile
55.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-190
Status
published
Products (2)
debian/debian_linux
10.0
webmproject/libvpx
< 1.14.1
Published
Jun 03, 2024
Tracked Since
Feb 18, 2026