Libaom
Products
1- 9 CVEs
Recent CVEs
9| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-56208 | imp | 0.49 | 7.6 | — | Jun 19, 2026 | libaom: libaom: heap buffer overflow in AV1 encoder first-pass stats buffer via LAP mode | ||
| CVE-2026-56211 | imp | 0.46 | 7.1 | — | Jun 19, 2026 | libaom: libaom: remote code execution via SVC layer context handling with attacker-controlled frames | ||
| CVE-2026-56209 | imp | 0.46 | 7.1 | — | Jun 19, 2026 | libaom: libaom: arbitrary address write via SVC layer context OOB and cyclic refresh map pointer hijack | ||
| CVE-2026-56210 | imp | 0.46 | 7.1 | — | Jun 19, 2026 | libaom: libaom: heap-buffer-overflow read via missing bounds check in ctrl_set_layer_id | ||
| CVE-2024-5171 | 0.00 | — | 0.01 | Jun 5, 2024 | Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow. This function can be reached via 3 callers: * Calling aom_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations… | |||
| CVE-2023-6879 | 0.00 | — | 0.01 | Dec 27, 2023 | Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoration_dealloc(). | |||
| CVE-2021-30475 | 0.00 | — | 0.02 | Jun 4, 2021 | aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow. | |||
| CVE-2021-30474 | 0.00 | — | 0.02 | Jun 2, 2021 | aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free. | |||
| CVE-2021-30473 | 0.00 | — | 0.02 | May 6, 2021 | aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap. |
- risk 0.49cvss 7.6epss —
libaom: libaom: heap buffer overflow in AV1 encoder first-pass stats buffer via LAP mode
- risk 0.46cvss 7.1epss —
libaom: libaom: remote code execution via SVC layer context handling with attacker-controlled frames
- risk 0.46cvss 7.1epss —
libaom: libaom: arbitrary address write via SVC layer context OOB and cyclic refresh map pointer hijack
- risk 0.46cvss 7.1epss —
libaom: libaom: heap-buffer-overflow read via missing bounds check in ctrl_set_layer_id
- CVE-2024-5171Jun 5, 2024risk 0.00cvss —epss 0.01
Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow. This function can be reached via 3 callers: * Calling aom_img_alloc() with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations…
- CVE-2023-6879Dec 27, 2023risk 0.00cvss —epss 0.01
Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoration_dealloc().
- CVE-2021-30475Jun 4, 2021risk 0.00cvss —epss 0.02
aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow.
- CVE-2021-30474Jun 2, 2021risk 0.00cvss —epss 0.02
aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free.
- CVE-2021-30473May 6, 2021risk 0.00cvss —epss 0.02
aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.