MGASA-2024-0111

Source
https://advisories.mageia.org/MGASA-2024-0111.html
Import Source
https://advisories.mageia.org/MGASA-2024-0111.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2024-0111
Related
Published
2024-04-05T22:26:33Z
Modified
2024-04-05T22:09:42Z
Summary
Updated dav1d packages fix security vulnerability
Details

An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. (CVE-2024-1580)

References
Credits

Affected packages

Mageia:9 / dav1d

Package

Name
dav1d
Purl
pkg:rpm/mageia/dav1d?distro=mageia-9

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.1-1.1.mga9

Ecosystem specific

{
    "section": "core"
}