[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-5283/libvpx via untable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 28 06:59:29 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c90c0355 by Salvatore Bonaccorso at 2025-05-28T07:58:59+02:00
Track fixed version for CVE-2025-5283/libvpx via untable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25,7 +25,7 @@ CVE-2025-5283 [double-free in vpx_codec_enc_init_multi]
- firefox <unfixed>
- firefox-esr <unfixed>
- thunderbird <unfixed>
- - libvpx <unfixed> (bug #1106689)
+ - libvpx 1.15.0-2.1 (bug #1106689)
NOTE: Fixed by: https://chromium.googlesource.com/webm/libvpx/+/1c758781c428c0e895645b95b8ff1512b6bdcecb
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-42/#CVE-2025-5283
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-44/#CVE-2025-5283
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c90c0355d92ceb7904086fde4372ed5039e96ce0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c90c0355d92ceb7904086fde4372ed5039e96ce0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250528/182c74a8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list