rpm package
suse/dav1d&distro=SUSE Linux Enterprise Module for Package Hub 15 SP5
pkg:rpm/suse/dav1d&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-1580 | — | < 1.0.0-150500.3.6.1 | 1.0.0-150500.3.6.1 | Feb 19, 2024 | An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past version 1.4.0 of dav1d. | ||
| CVE-2023-32570 | — | < 1.0.0-150500.3.3.1 | 1.0.0-150500.3.3.1 | May 10, 2023 | VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit. |
- CVE-2024-1580Feb 19, 2024affected < 1.0.0-150500.3.6.1fixed 1.0.0-150500.3.6.1
An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past version 1.4.0 of dav1d.
- CVE-2023-32570May 10, 2023affected < 1.0.0-150500.3.3.1fixed 1.0.0-150500.3.3.1
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.