Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:9119

Опубликовано: 29 июл. 2025
Источник: rocky
Оценка: Important

Описание

Important: libvpx security update

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

  • libvpx: Double-free in libvpx encoder (CVE-2025-5283)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

Связанные CVE

Исправления

Связанные уязвимости

CVSS3: 5.4
ubuntu
2 месяца назад

Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CVSS3: 8.1
redhat
2 месяца назад

Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CVSS3: 5.4
nvd
2 месяца назад

Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

msrc
2 месяца назад

Chromium: CVE-2025-5283 Use after free in libvpx

CVSS3: 5.4
debian
2 месяца назад

Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allow ...