Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:4447

Опубликовано: 13 мар. 2026
Источник: rocky
Оценка: Important

Описание

Important: libvpx security update

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

  • libvpx: Heap buffer overflow in libvpx (CVE-2026-2447)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
libvpxi68610.el9_7libvpx-1.9.0-10.el9_7.i686.rpm
libvpxx86_6410.el9_7libvpx-1.9.0-10.el9_7.x86_64.rpm

Показывать по

Связанные CVE

CVE-2026-2447

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2026-2447

CVSS3: 8.8
ubuntu
около 1 месяца назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

redhat логотип

CVE-2026-2447

CVSS3: 7.5
redhat
около 1 месяца назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

nvd логотип

CVE-2026-2447

CVSS3: 8.8
nvd
около 1 месяца назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

debian логотип

CVE-2026-2447

CVSS3: 8.8
debian
около 1 месяца назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 1 ...

suse-cvrf логотип

openSUSE-SU-2026:20253-1

suse-cvrf
около 1 месяца назад

Security update for MozillaFirefox