CVE-2020-36131
https://notcve.org/view.php?id=CVE-2020-36131
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c. Se ha detectado que AOM versión v2.0.1, contenía un desbordamiento del búfer de la pila por medio del componente stats/rate_hist.c • https://bugs.chromium.org/p/aomedia/issues/detail?id=2911&q=&can=1 https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html https://security.gentoo.org/glsa/202401-32 https://www.debian.org/security/2023/dsa-5490 • CWE-787: Out-of-bounds Write •
CVE-2020-36135
https://notcve.org/view.php?id=CVE-2020-36135
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c. Se ha detectado que AOM versión v2.0.1, contiene una desreferencia de puntero NULL por medio del componente rate_hist.c • https://bugs.chromium.org/p/aomedia/issues/detail?id=2910&q=&can=1 https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html https://security.gentoo.org/glsa/202401-32 https://www.debian.org/security/2023/dsa-5490 • CWE-476: NULL Pointer Dereference •
CVE-2020-36134
https://notcve.org/view.php?id=CVE-2020-36134
AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c. Se ha detectado que AOM versión v2.0.1, contiene una violación de segmentación por medio del componente aom_dsp/x86/obmc_sad_avx2.c • https://bugs.chromium.org/p/aomedia/issues/detail?id=2914 https://security.gentoo.org/glsa/202401-32 • CWE-125: Out-of-bounds Read •
CVE-2021-30475
https://notcve.org/view.php?id=CVE-2021-30475
aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow. El archivo aom_dsp/noise_model.c en libaom en AOMedia versiones anteriores al 24-03-2021, presenta un desbordamiento del búfer • https://aomedia.googlesource.com/aom/+/12adc723acf02633595a4d8da8345742729f46c0 https://bugs.chromium.org/p/aomedia/issues/detail?id=2999 https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZXCI33HXH6YSOGC2LPE2REQLMIDH6US4 https://security.gentoo.org/glsa/202401-32 https://www.debian.org/security/2023/dsa-5490 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2021-30474
https://notcve.org/view.php?id=CVE-2021-30474
aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free. El archivo aom_dsp/grain_table.c en la función libaom en AOMedia hasta el 30-03-2021, presenta un uso de la memoria previamente liberada • https://aomedia.googlesource.com/aom/+/6e31957b6dc62dbc7d1bb70cd84902dd14c4bf2e https://bugs.chromium.org/p/aomedia/issues/detail?id=3000 https://lists.debian.org/debian-lts-announce/2023/09/msg00003.html https://security.gentoo.org/glsa/202401-32 https://www.debian.org/security/2023/dsa-5490 • CWE-416: Use After Free •