There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx img alloc() with a large value of the d w, d h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx image t struct may be invalid. Calling vpx img wrap() with a large value of the d w, d h, or stride align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx image t struct may be invalid. We recommend upgrading to version 1.14.1 or beyond