CVE-2017-13194

Published: 12 January 2018

A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
libvpx
Launchpad, Ubuntu, Debian
Upstream
Released (1.3.0-3+deb8u1, 1.7.0-2)
Ubuntu 20.10 (Groovy Gorilla) Not vulnerable
(1.7.0-3)
Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable
(1.7.0-3)
Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(1.7.0-3)
Ubuntu 16.04 LTS (Xenial Xerus)
Released (1.5.0-2ubuntu1.1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (1.3.0-2ubuntu0.1~esm1)
Patches:
Upstream: https://github.com/webmproject/libvpx/commit/5a40c8fde11bf82cccb5bd2f57c46ab5e6262cbf
Upstream: https://github.com/webmproject/libvpx/commit/33c598990bc771d7367fe6282bd445e92cd856a6