VYPR
Vendor

Aomedia

Products
4
CVEs
15
Across products
15
Status
Private

Products

4

Recent CVEs

15
  • CVE-2021-30475CriJun 4, 2021
    risk 0.64cvss 9.8epss 0.02

    aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow.

  • CVE-2021-30474CriJun 2, 2021
    risk 0.64cvss 9.8epss 0.02

    aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free.

  • CVE-2021-30473CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.

  • CVE-2023-6879CriDec 27, 2023
    risk 0.59cvss 9.0epss 0.01

    Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoration_dealloc().

  • CVE-2020-36133HigDec 2, 2021
    risk 0.57cvss 8.8epss 0.02

    AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h.

  • CVE-2020-36131HigDec 2, 2021
    risk 0.57cvss 8.8epss 0.02

    AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c.

  • CVE-2020-36129HigDec 2, 2021
    risk 0.57cvss 8.8epss 0.01

    AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aom_image.c.

  • CVE-2020-36407HigJul 1, 2021
    risk 0.50cvss 8.8epss 0.01

    libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid.

  • CVE-2023-39616HigAug 29, 2023
    risk 0.49cvss 7.5epss 0.01

    AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assign_frame_buffer_p in av1/common/av1_common_int.h.

  • CVE-2020-36135MedDec 2, 2021
    risk 0.42cvss 6.5epss 0.01

    AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c.

  • CVE-2020-36134MedDec 2, 2021
    risk 0.42cvss 6.5epss 0.01

    AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c.

  • CVE-2020-36130MedDec 2, 2021
    risk 0.42cvss 6.5epss 0.01

    AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.

  • CVE-2018-18064MedOct 8, 2018
    risk 0.42cvss 6.5epss 0.01

    cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the…

  • CVE-2025-48175May 16, 2025
    risk 0.00cvss epss 0.00

    In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.

  • CVE-2025-48174May 16, 2025
    risk 0.00cvss epss 0.00

    In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.