Bug#988211: CVE-2021-30473

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#988211: CVE-2021-30473
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 07 May 2021 21:23:19 +0200
Message-id: <[🔎] 162041539991.335722.12634870251217751438.reportbug@hullmann.westfalen.local>
Reply-to: Moritz Muehlenhoff <jmm@debian.org>, 988211@bugs.debian.org

Source: aom
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team <team@security.debian.org>

CVE-2021-30473:
| aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.

Unfortunately https://bugs.chromium.org/p/aomedia/issues/detail?id=2998 is private,
but the fix appears to be
https://aomedia.googlesource.com/aom/+/4efe20e99dcd9b6f8eadc8de8acc825be7416578

Cheers,
        Moritz

Reply to:

Prev by Date: Bug#975441: x264 silently disables gpac support with gpac 1.0.1
Next by Date: Bug#982249: mpv-0.33 upgrade
Previous by thread: Bug#975441: x264 silently disables gpac support with gpac 1.0.1
Next by thread: Bug#982249: mpv-0.33 upgrade
Index(es):
- Date
- Thread