Techly NewsGet the app

Get the latest tech news

Out-Of-Date OpenH264 On Fedora Is Frustrating Users With A High Severity CVE


While OpenH264 support coming to Fedora was widely celebrated as part of offering a better codec experience on Fedora Linux, an increasing number of Fedora users have grown frustrated with the OpenH264 packaging in that it's been out-of-date for several months with a high severity security vulnerability.

The issue stems from the decoding functions of the OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow on the system. Leading to delays in shipping a fixed version of OpenH264 were initially some ABI compatibility concerns and then issues in getting the updated OpenH264 packages into the Cisco-hosted repository. Having this high severity issue persist for months and given the pervasiveness of H.264 content on the web, there's been some such as on the Fedora development list that have expressed a desire to see the OpenH264 packages removed if they cannot be properly maintained.

Get the Android app

Or read this on Phoronix

Read more on:

Photo of Date

Date

Photo of fedora

fedora

Photo of frustrating users

frustrating users

Related news:

News photo

Vibe coding for teams, thoughts to date

News photo

The Enhanced Games Has a Date, a Host City, and a Drug-Fueled World Record

News photo

Fedora 43 Cleared To Ship With Wayland-Only GNOME

« Meta AI already has 1 billion active users
Sun's unpredictable outbursts are forcing satellites back to Earth sooner | Space debris on Earth is no longer a hypothetical, it's happening now »