https://security-tracker.debian.org/tracker/DSA-6143-1
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code.
https://security-tracker.debian.org/tracker/DSA-5722-1