[ubuntu/oracular-proposed] aom 3.8.2-2ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Jun 5 13:45:14 UTC 2024 

aom (3.8.2-2ubuntu1) oracular; urgency=medium

  * SECURITY UPDATE: Integer overflow in img_alloc_helper
    - debian/patches/CVE-2024-5171-1.patch: fix integer overflows in calc
      of stride_in_bytes in aom/src/aom_image.c, test/aom_image_test.cc.
    - debian/patches/CVE-2024-5171-2.patch: avoid integer overflows in
      align_image_dimension() in aom/aom_image.h, aom/src/aom_image.c,
      test/aom_image_test.cc.
    - CVE-2024-5171

Date: Wed, 05 Jun 2024 09:21:53 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/aom/3.8.2-2ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 05 Jun 2024 09:21:53 -0400
Source: aom
Built-For-Profiles: noudeb
Architecture: source
Version: 3.8.2-2ubuntu1
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 aom (3.8.2-2ubuntu1) oracular; urgency=medium
 .
   * SECURITY UPDATE: Integer overflow in img_alloc_helper
     - debian/patches/CVE-2024-5171-1.patch: fix integer overflows in calc
       of stride_in_bytes in aom/src/aom_image.c, test/aom_image_test.cc.
     - debian/patches/CVE-2024-5171-2.patch: avoid integer overflows in
       align_image_dimension() in aom/aom_image.h, aom/src/aom_image.c,
       test/aom_image_test.cc.
     - CVE-2024-5171
Checksums-Sha1:
 65c56dc1c1bd50bdb083d6af3e4f666c51f9f8c2 2387 aom_3.8.2-2ubuntu1.dsc
 61d1bcdaa9b6adbe1f2d284dc5e92d394631ffd2 22764 aom_3.8.2-2ubuntu1.debian.tar.xz
 f106ae47bc339818a8ddc05ae05ef1593bd67721 13864 aom_3.8.2-2ubuntu1_source.buildinfo
Checksums-Sha256:
 bf3bf817499baf7bfd8c8e1f9a57f9338f4c488026cbd5a6aa998e1575cca121 2387 aom_3.8.2-2ubuntu1.dsc
 e9b76e677929f19a203097936a82c8028c973fb744aacdeefd65ac6e3eb48416 22764 aom_3.8.2-2ubuntu1.debian.tar.xz
 b05f6431e79fe50d2c5446efa5a3da07c00189df3fe01ca81988fa00fac7c6d1 13864 aom_3.8.2-2ubuntu1_source.buildinfo
Files:
 ad6266e066a6ab50b84cc5ff0dfc7788 2387 video optional aom_3.8.2-2ubuntu1.dsc
 5564a395a6ec98afc313fcab0054ca16 22764 video optional aom_3.8.2-2ubuntu1.debian.tar.xz
 8f4e2fea0962a70ce044cd32ad7d3216 13864 video optional aom_3.8.2-2ubuntu1_source.buildinfo
Original-Maintainer: Debian Multimedia Maintainers <debian-multimedia at lists.debian.org>

More information about the oracular-changes mailing list