ELSA-2020-3876

ELSA-2020-3876 - libvpx security update

Type:SECURITY
Severity:MODERATE
Release Date:2020-10-06

Description


[1.3.0-8]
- Fix for CVE-2020-0034
- Resolves: rhbz#1823909

[1.3.0-7]
- Fix for CVE-2019-9232 and CVE-2019-9433
- Resolves: rhbz#1796085, rhbz#1796099

[1.3.0-6]
- Fix for CVE-2017-0393
- Resolves: rhbz#1779498

[1.3.0-4]
- fix Illegal Instruction abort

[1.3.0-3]
- update library symbol list for 1.3.0 from Debian

[1.3.0-2]
- armv7hl specific target

[1.3.0-1]
- update to 1.3.0

[1.2.0-1]
- update to 1.2.0

[1.1.0-1]
- update to 1.1.0

[1.0.0-3]
- fix vpx.pc file to include -lm (bz825754)

[1.0.0-2]
- use included vpx.pc file (drop local libvpx.pc)
- apply upstream fix to vpx.pc file (bz 814177)

[1.0.0-1]
- update to 1.0.0

[0.9.7.1-3]
- use macro instead of hard-coded version

[0.9.7.1-2]
- fix build on generic targets

[0.9.7.1-1]
- libvpx 0.9.7-p1

[0.9.7-1]
- libvpx 0.9.7

[0.9.6-2]
- add 2 symbols to the shared library for generic targets

[0.9.6-1]
- update to 0.9.6

[0.9.5-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild

[0.9.5-2]
- apply patch from upstream git (Change I6266aba7), should resolve CVE-2010-4203

[0.9.5-1]
- update to 0.9.5

[0.9.1-3]
- only package html docs to avoid multilib conflict (bz 613185)

[0.9.1-2]
- build shared library the old way for generic arches

[0.9.1-1]
- update to 0.9.1

[0.9.0-7]
- update to git revision 8389f1967c5f8b3819cca80705b1b4ba04132b93
- upstream fix for bz 599147
- proper shared library support

[0.9.0-6]
- add hackish fix for bz 599147
(upstream will hopefully fix properly in future release)

[0.9.0-5]
- fix noexecstack flag

[0.9.0-4]
- BuildRequires: yasm (were optimized again)

[0.9.0-3]
- add pkg-config file
- move headers into include/vpx/
- enable optimization

[0.9.0-2]
- fix permissions on binaries
- rename generic binaries to v8_*
- link shared library to -lm, -lpthread to resolve missing weak symbols

[0.9.0-1]
- Initial package for Fedora


Related CVEs


CVE-2020-0034
CVE-2017-0393
CVE-2019-9232
CVE-2019-9433

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) libvpx-1.3.0-8.el7.src.rpm391949bf00716010cb22cb965b2bbca5-
libvpx-1.3.0-8.el7.aarch64.rpmd9552802d907547da3d6e0274761194f-
libvpx-devel-1.3.0-8.el7.aarch64.rpma1b1869ec3260a0ded9d0977c29f823e-
libvpx-utils-1.3.0-8.el7.aarch64.rpmf7e2c36c770fccf1a4b0119a9c0c5390-
Oracle Linux 7 (x86_64) libvpx-1.3.0-8.el7.src.rpm391949bf00716010cb22cb965b2bbca5-
libvpx-1.3.0-8.el7.i686.rpm294966e171f9dd4ffc891bed540f7e60-
libvpx-1.3.0-8.el7.x86_64.rpmdb1c0529e0efd338c175d8397baf3191-
libvpx-devel-1.3.0-8.el7.i686.rpmfd5ca7bcd3a90bee15f6e17a3918c8d1-
libvpx-devel-1.3.0-8.el7.x86_64.rpm04bfb34af1498f75c9c93315e1be3919-
libvpx-utils-1.3.0-8.el7.x86_64.rpmd8f8796d6f4b32d1df74320a7317c817-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete