These are all security issues fixed in the libvpx-devel-1.13.0-2.1 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "libvpx-devel": "1.13.0-2.1", "vpx-tools": "1.13.0-2.1", "libvpx8-32bit": "1.13.0-2.1", "libvpx8": "1.13.0-2.1" } ] }