CVE-2017-13194

Priority
Description
A vulnerability in the Android media framework (libvpx) related to odd
frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1.
Android ID: A-64710201.
Assigned-to
mdeslaur
Notes
leosilvacode in trusty is quite different needs to be tested with the POC
if possible.
Package
Upstream:released (1.3.0-3+deb8u1, 1.7.0-2)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):released (1.5.0-2ubuntu1.1)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (1.7.0-3)
Ubuntu 19.04 (Disco Dingo):not-affected (1.7.0-3)
Ubuntu 19.10 (Eoan Ermine):not-affected (1.7.0-3)
Ubuntu 20.04 (Focal Fossa):not-affected (1.7.0-3)
Patches:
Upstream:https://github.com/webmproject/libvpx/commit/5a40c8fde11bf82cccb5bd2f57c46ab5e6262cbf
Upstream:https://github.com/webmproject/libvpx/commit/33c598990bc771d7367fe6282bd445e92cd856a6
More Information

Updated: 2019-12-05 19:43:52 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)