VDB
RHSA-2023%3A5540
RHSA-2023%3A5540
PUBLISHED
CVSS 8.800000190734863 HIGH
An update for libvpx is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| libvpx | ||
| Red Hat Enterprise Linux AppStream EUS (v.9.0) | ||
| Red Hat CodeReady Linux Builder EUS (v.9.0) |
Timeline
- Oct 9, 2023 CVE Published
- Apr 28, 2025 PoC Published
- Mar 18, 2026 CVE Updated
- Apr 3, 2026 Distribution Patch
- Apr 3, 2026 Distribution Patch
- Apr 3, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:5540 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://bugzilla.redhat.com/show_bug.cgi?id=2241191 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2241806 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5540.json advisory