SUSE-SU-2024:0963-1

Опубликовано: 21 мар. 2024

Источник: suse-cvrf

Описание

Security update for dav1d

This update for dav1d fixes the following issues:

CVE-2024-1580: Fixed tile_start_off calculations for extremely large frame sizes (bsc#1220100).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP5

libdav1d5-0.9.2-150400.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20240963-1/
Link for SUSE-SU-2024:0963-1
https://lists.suse.com/pipermail/sle-security-updates/2024-March/018195.html
E-Mail link for SUSE-SU-2024:0963-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1220100
SUSE Bug 1220100
https://www.suse.com/security/cve/CVE-2024-1580/
SUSE CVE CVE-2024-1580 page

Описание

An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past version 1.4.0 of dav1d.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP5:libdav1d5-0.9.2-150400.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-1580.html
CVE-2024-1580
https://bugzilla.suse.com/1220099
SUSE Bug 1220099

SUSE-SU-2024:0963-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP5

Ссылки

Уязвимость: CVE-2024-1580

Описание

Затронутые продукты

Ссылки