Advisories » MGASA-2018-0112

Updated libvpx packages fix security vulnerability

Publication date: 06 Feb 2018
Modification date: 06 Feb 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-13194

Description

A flaw was found in libvpx related to odd frame width, which may lead to a
denial of service (CVE-2017-13194).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=22463
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/K7IIUY6YMQMZRGUJWQTDO45UHYP4222K/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13194

SRPMS

6/core

• libvpx-1.5.0-3.1.mga6

5/core

• libvpx-1.3.0-3.2.mga5