Launchpad.net

CVE 2020-36130

AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.

CVE-2020-36130 (Candidate) is related to these bugs:

Bug #2004442: [MIR] aom (dependency of libheif)

Summary				In	Importance	Status
	2004442	[MIR] aom (dependency of libheif)		aom (Ubuntu)	Undecided	Fix Released
	2004442	[MIR] aom (dependency of libheif)		aom (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.