Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:4629

Опубликовано: 17 мар. 2026
Источник: rocky
Оценка: Important

Описание

Important: libvpx security update

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format.

Security Fix(es):

  • libvpx: Heap buffer overflow in libvpx (CVE-2026-2447)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
libvpxx86_646.el10_1libvpx-1.14.1-6.el10_1.x86_64.rpm

Показывать по

Связанные CVE

CVE-2026-2447

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2026-2447

CVSS3: 8.8
ubuntu
около 2 месяцев назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

redhat логотип

CVE-2026-2447

CVSS3: 7.5
redhat
около 2 месяцев назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

nvd логотип

CVE-2026-2447

CVSS3: 8.8
nvd
около 2 месяцев назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.

debian логотип

CVE-2026-2447

CVSS3: 8.8
debian
около 2 месяцев назад

Heap buffer overflow in libvpx. This vulnerability affects Firefox < 1 ...

suse-cvrf логотип

openSUSE-SU-2026:20253-1

suse-cvrf
около 2 месяцев назад

Security update for MozillaFirefox