Unrated severityNVD Advisory· Published May 10, 2023· Updated Jan 28, 2025
CVE-2023-32570
CVE-2023-32570
Description
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- VideoLAN/dav1ddescription
- osv-coords3 versionspkg:rpm/opensuse/dav1d&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/dav1d&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/dav1d&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5
< 1.0.0-150500.3.3.1+ 2 more
- (no CPE)range: < 1.0.0-150500.3.3.1
- (no CPE)range: < 1.0.0-150500.3.3.1
- (no CPE)range: < 1.0.0-150500.3.3.1
Patches
Vulnerability mechanics
References
5- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3WGSO7UMOF4MVLQ5H6KIV7OG6ONS377B/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LXZ6CUNJFDJLCFOZHY2TIGMCAEITLCRP/mitrevendor-advisory
- security.gentoo.org/glsa/202310-05mitrevendor-advisory
- code.videolan.org/videolan/dav1d/-/commit/cf617fdae0b9bfabd27282854c8e81450d955efamitre
- code.videolan.org/videolan/dav1d/-/tags/1.2.0mitre
News mentions
0No linked articles in our index yet.