Publishing details

• Published on 2019-11-25
• Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

libvpx (1.5.0-2ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: image width alignment issue
    - debian/patches/CVE-2017-13194-1.patch: fix image width alignment in
      vpx/src/vpx_image.c.
    - debian/patches/CVE-2017-13194-2.patch: fix alignment without external
      allocation in vpx/src/vpx_image.c.
    - CVE-2017-13194
  * SECURITY UPDATE: double free in ParseContentEncodingEntry
    - debian/patches/CVE-2019-2126.patch: set compression_entries_ to NULL
      in third_party/libwebm/mkvparser/mkvparser.cc.
    - CVE-2019-2126
  * SECURITY UPDATE: out of bounds read
    - debian/patches/CVE-2019-9232.patch: use unsigned char in
      vp8/decoder/dboolhuff.h, vpx_dsp/bitreader.h.
    - CVE-2019-9232
  * SECURITY UPDATE: out of bounds read
    - debian/patches/CVE-2019-9325.patch: fix size in vp9/vp9_dx_iface.c,
      vpx_dsp/bitreader_buffer.c, test/decode_api_test.cc.
    - CVE-2019-9325
  * SECURITY UPDATE: memory disclosure issue
    - debian/patches/CVE-2019-9433.patch: fix use-after-free in
      vp8/common/postproc.c.
    - CVE-2019-9433

 -- Marc Deslauriers <email address hidden>  Tue, 19 Nov 2019 11:26:37 -0500

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el
• s390x

Built packages

• libvpx-dev VP8 and VP9 video codec (development files)

• libvpx-dev-dbgsym debug symbols for package libvpx-dev

• libvpx-doc VP8 and VP9 video codec (API documentation)

• libvpx3 VP8 and VP9 video codec (shared library)

• libvpx3-dbg VP8 and VP9 video codec (debugging symbols)

• libvpx3-dbgsym debug symbols for package libvpx3

• vpx-tools VP8 and VP9 video codec encoding/decoding tools

• vpx-tools-dbgsym debug symbols for package vpx-tools

Package files

• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_amd64.ddeb (976 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_arm64.ddeb (978 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_armhf.ddeb (978 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_i386.ddeb (980 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_powerpc.ddeb (980 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_ppc64el.ddeb (982 bytes)
• libvpx-dev-dbgsym_1.5.0-2ubuntu1.1_s390x.ddeb (976 bytes)
• libvpx-dev_1.5.0-2ubuntu1.1_amd64.deb (800.3 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_arm64.deb (625.9 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_armhf.deb (473.8 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_i386.deb (761.6 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_powerpc.deb (604.7 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_ppc64el.deb (781.1 KiB)
• libvpx-dev_1.5.0-2ubuntu1.1_s390x.deb (743.1 KiB)
• libvpx-doc_1.5.0-2ubuntu1.1_all.deb (233.0 KiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_amd64.deb (1.6 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_arm64.deb (1.3 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_armhf.deb (2.0 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_i386.deb (1.5 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_powerpc.deb (1.2 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_ppc64el.deb (1.3 MiB)
• libvpx3-dbg_1.5.0-2ubuntu1.1_s390x.deb (1.4 MiB)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_amd64.ddeb (938 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_arm64.ddeb (938 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_armhf.ddeb (938 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_i386.ddeb (938 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_powerpc.ddeb (936 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_ppc64el.ddeb (936 bytes)
• libvpx3-dbgsym_1.5.0-2ubuntu1.1_s390x.ddeb (938 bytes)
• libvpx3_1.5.0-2ubuntu1.1_amd64.deb (715.1 KiB)
• libvpx3_1.5.0-2ubuntu1.1_arm64.deb (549.8 KiB)
• libvpx3_1.5.0-2ubuntu1.1_armhf.deb (929.4 KiB)
• libvpx3_1.5.0-2ubuntu1.1_i386.deb (661.9 KiB)
• libvpx3_1.5.0-2ubuntu1.1_powerpc.deb (542.6 KiB)
• libvpx3_1.5.0-2ubuntu1.1_ppc64el.deb (698.5 KiB)
• libvpx3_1.5.0-2ubuntu1.1_s390x.deb (678.6 KiB)
• libvpx_1.5.0-2ubuntu1.1.debian.tar.xz (17.1 KiB)
• libvpx_1.5.0-2ubuntu1.1.dsc (2.1 KiB)
• libvpx_1.5.0.orig.tar.bz2 (1.8 MiB)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_amd64.ddeb (954 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_arm64.ddeb (954 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_armhf.ddeb (952 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_i386.ddeb (952 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_powerpc.ddeb (954 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_ppc64el.ddeb (954 bytes)
• vpx-tools-dbgsym_1.5.0-2ubuntu1.1_s390x.ddeb (954 bytes)
• vpx-tools_1.5.0-2ubuntu1.1_amd64.deb (202.9 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_arm64.deb (164.7 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_armhf.deb (98.7 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_i386.deb (133.7 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_powerpc.deb (118.8 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_ppc64el.deb (204.8 KiB)
• vpx-tools_1.5.0-2ubuntu1.1_s390x.deb (114.2 KiB)