It was discovered that libvpx did not properly handle certain malformed media files. If an application using libvpx opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "vpx-tools-dbgsym": "1.11.0-2ubuntu2.2", "libvpx7": "1.11.0-2ubuntu2.2", "vpx-tools": "1.11.0-2ubuntu2.2", "libvpx-doc": "1.11.0-2ubuntu2.2", "libvpx-dev": "1.11.0-2ubuntu2.2", "libvpx7-dbgsym": "1.11.0-2ubuntu2.2" } ] }