Debian Linux Security Advisory 5722-1 - It was discovered that multiple integer overflows in libvpx, a multimedia library for the VP8 and VP9 video codecs, may result in denial of service and potentially the execution of arbitrary code.
5d3f151b82ee756d4a34d786a92a8a5dab96760b41c39b657649c82e788752ed
Ubuntu Security Notice 6814-1 - Xiantong Hou discovered that libvpx did not properly handle certain malformed media files. If an application using libvpx opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.
ce0d520cb7efd588f6023aee556334615a1e00bb61a4443130c95977885c315e