CVE-2010-4489
Published: 7 December 2010
libvpx, as used in Google Chrome before 8.0.552.215 and possibly other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WebM video. NOTE: this vulnerability exists because of a regression.
Priority
Status
Package | Release | Status |
---|---|---|
chromium-browser
Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
hardy |
Does not exist
|
|
karmic |
Does not exist
|
|
lucid |
Ignored
(end of life)
|
|
maverick |
Ignored
(end of life)
|
|
upstream |
Released
(8.0.552.215)
|
|
libvpx
Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
hardy |
Does not exist
|
|
karmic |
Does not exist
|
|
lucid |
Released
(0.9.5-2~build0.10.04.1)
|
|
maverick |
Released
(0.9.5-2~build0.10.10.1)
|
|
upstream |
Released
(0.9.5-2)
|
|
Patches:
upstream: http://review.webmproject.org/#change,1098 |