CVE-2024-5171

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-5171
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-5171.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-5171
Related
Published
2024-06-05T20:15:13Z
Modified
2024-12-05T15:36:52.613672Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers:

  • Calling aomimgalloc() with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned aomimaget struct may be invalid.
  • Calling aomimgwrap() with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned aomimaget struct may be invalid.
  • Calling aomimgallocwithborder() with a large value of the dw, dh, align, sizealign, or border parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned aomimage_t struct may be invalid.
References

Affected packages

Alpine:v3.20 / aom

Package

Name
aom
Purl
pkg:apk/alpine/aom?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.9.1-r0

Affected versions

1.*

1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3

3.*

3.1.1-r0
3.1.2-r0
3.2.0-r0
3.2.0-r1
3.3.0-r0
3.4.0-r0
3.5.0-r0
3.5.0-r1
3.6.0-r0
3.6.0-r1
3.6.0-r2
3.6.0-r3
3.6.1-r0
3.7.0-r0
3.7.1-r0
3.8.1-r0
3.8.2-r0
3.9.0-r0

Alpine:v3.21 / aom

Package

Name
aom
Purl
pkg:apk/alpine/aom?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.9.1-r0

Affected versions

1.*

1.0.0-r0
1.0.0-r1
1.0.0-r2
1.0.0-r3

3.*

3.1.1-r0
3.1.2-r0
3.2.0-r0
3.2.0-r1
3.3.0-r0
3.4.0-r0
3.5.0-r0
3.5.0-r1
3.6.0-r0
3.6.0-r1
3.6.0-r2
3.6.0-r3
3.6.1-r0
3.7.0-r0
3.7.1-r0
3.8.1-r0
3.8.2-r0
3.9.0-r0

Debian:11 / aom

Package

Name
aom
Purl
pkg:deb/debian/aom?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.0.errata1-3+deb11u2

Affected versions

1.*

1.0.0.errata1-3
1.0.0.errata1-3+deb11u1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / aom

Package

Name
aom
Purl
pkg:deb/debian/aom?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.6.0-1+deb12u1

Affected versions

3.*

3.6.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / aom

Package

Name
aom
Purl
pkg:deb/debian/aom?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.8.2-3

Affected versions

3.*

3.6.0-1
3.6.1-1
3.7.0~rc3-1
3.7.0~really3.6.1-1
3.7.0-1~exp1
3.7.0-1
3.7.1-1
3.8.1-1
3.8.2-1
3.8.2-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}