CVE-2015-4486
EPSS 1.7%Published: 8/16/2015Modified: 4/28/2026
Description
The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via malformed WebM video data.
Affected packages (1)
- Debian/libvpxfrom 0, < 1.4.0-1