Alliance for Open Media AOMedia 2.0.1

CPE Details

Alliance for Open Media AOMedia 2.0.1
aomedia
aomedia
2.0.1
2021-07-26
11h57 +00:00
2021-07-27
10h53 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:aomedia:aomedia:2.0.1:*:*:*:*:*:*:*

Informations

Vendor

aomedia

Product

aomedia

Version

2.0.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-6879 2023-12-27 22h16 +00:00 Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoration_dealloc().
9.8
Critical
CVE-2020-36129 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aom_image.c.
8.8
High
CVE-2020-36130 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.
6.5
Medium
CVE-2020-36131 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c.
8.8
High
CVE-2020-36133 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h.
8.8
High
CVE-2020-36134 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c.
6.5
Medium
CVE-2020-36135 2021-12-01 23h00 +00:00 AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c.
6.5
Medium
CVE-2021-30475 2021-06-03 22h00 +00:00 aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow.
9.8
Critical
CVE-2021-30474 2021-06-01 22h00 +00:00 aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free.
9.8
Critical
CVE-2021-30473 2021-05-05 22h00 +00:00 aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.
9.8
Critical
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.