Bug 785640 – CVE-2012-0823 libvpx: VP8 Codec decoder crash introduced in 0.9.7

Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.

Bug 785640 - (CVE-2012-0823) CVE-2012-0823 libvpx: VP8 Codec decoder crash introduced in 0.9.7

Summary:	CVE-2012-0823 libvpx: VP8 Codec decoder crash introduced in 0.9.7

Status:	CLOSED ERRATA

Aliases:	CVE-2012-0823

Product:	Security Response
Classification:	Other
Component:	vulnerability (Show other bugs)
Sub Component:
Version:	unspecified
Hardware:	All Linux

Priority	medium Severity medium
Target Milestone:	---
Target Release:	---
Assigned To:	Red Hat Product Security
QA Contact:
Docs Contact:

URL:
Whiteboard:	impact=moderate,public=20120129,repor...
Keywords:	Reopened, Security

Depends On:	789650 789651
Blocks:	785645
	Show dependency tree / graph

Reported:	2012-01-30 00:50 EST by Kurt Seifried
Modified:	2015-08-19 05:15 EDT (History)
CC List:	5 users (show)

See Also:
Fixed In Version:	libvpx 1.0.0
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2012-03-22 10:27:06 EDT
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Kurt Seifried 2012-01-30 00:50:40 EST

From From Hanno Bock hanno@hboeck.de

libvpx (webm library) has released a new version that fixes a crasher
http://blog.webmproject.org/2012/01/vp8-codec-sdk-duclair-released.html

VP8 Codec SDK "Duclair" Released

Friday, January 27, 2012 | 6:31 PM

"Duclair," the fourth named release of the VP8 Codec SDK (libvpx), is now available. You can download the Duclair libvpx snapshot (version 1.0.0) from our Downloads page or clone it from our Git repository.

This release fixes a decoder crash bug introduced in Cayuga (v0.9.7), so we encourage all Cayuga users to upgrade.

Comment 1 Kurt Seifried 2012-01-30 15:57:28 EST

Here is the code commit and other information:

Code commit:

http://code.google.com/p/webm/source/detail?r=9bf3bc9a729ddbc909c589b810a80e5be80c1083&repo=libvpx

Original bugs:
http://code.google.com/p/webm/issues/detail?id=371
https://bugzilla.mozilla.org/show_bug.cgi?id=696390

Comment 3 Ramon de C Valle 2012-02-01 11:43:17 EST

Statement:

Not vulnerable. This issue did not affect the versions of libvpx as shipped
with Red Hat Enterprise Linux 6.

Comment 4 Tom "spot" Callaway 2012-02-09 09:56:17 EST

Just as an FYI, we pushed 1.0.0 into all active Fedora targets as an update at the same time as Firefox 10.

Comment 5 Kurt Seifried 2012-02-11 18:45:51 EST

Created libvpx tracking bugs for this issue

Affects: fedora-16 [bug 789650]

Comment 6 Kurt Seifried 2012-02-11 18:47:02 EST

Created libvpx tracking bugs for this issue

Affects: epel-5 [bug 789651]

Comment 7 Stefan Cornelius 2012-03-22 11:05:40 EDT

The issue was introduced in a later version than shipped with Red Hat Enterprise Linux 6.

Note You need to log in before you can comment on or make changes to this bug.