Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
CVE-2021-30473
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2021-30473
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-30473.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-30473
Downstream
DEBIAN-CVE-2021-30473
DLA-3556-1
DSA-5490-1
SUSE-SU-2022:1436-1
UBUNTU-CVE-2021-30473
USN-6447-1
Related
MGASA-2021-0352
SUSE-SU-2022:1436-1
Published
2021-05-06T15:15:07Z
Modified
2025-09-19T12:54:14.298552Z
Severity
9.8 (Critical)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
[none]
Details
aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.
References
https://aomedia.googlesource.com/aom/+/4efe20e99dcd9b6f8eadc8de8acc825be7416578
https://bugs.chromium.org/p/aomedia/issues/detail?id=2998
https://security.gentoo.org/glsa/202401-32
https://www.debian.org/security/2023/dsa-5490
https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZXCI33HXH6YSOGC2LPE2REQLMIDH6US4/
https://security.alpinelinux.org/vuln/CVE-2021-30473
Affected packages
Alpine:v3.17
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
Alpine:v3.18
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
Alpine:v3.19
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
Alpine:v3.20
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
Alpine:v3.21
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
Alpine:v3.22
aom
Package
Name
aom
Purl
pkg:apk/alpine/aom?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
3.1.1-r0
Affected versions
1.*
1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3
CVE-2021-30473 - OSV