Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Libde265
(Struktur)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 53 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-11-02 | CVE-2022-43252 | Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. | Debian_linux, Libde265 | 6.5 | ||
| 2022-11-02 | CVE-2022-43253 | Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_unweighted_pred_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. | Debian_linux, Libde265 | 6.5 | ||
| 2021-09-16 | CVE-2020-21596 | libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit function, which can be exploited via a crafted a file. | Debian_linux, Libde265 | 6.5 | ||
| 2021-09-16 | CVE-2020-21597 | libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file. | Debian_linux, Libde265 | 6.5 | ||
| 2021-09-16 | CVE-2020-21598 | libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse function, which can be exploited via a crafted a file. | Debian_linux, Libde265 | 8.8 | ||
| 2021-09-16 | CVE-2020-21599 | libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan function, which can be exploited via a crafted a file. | Debian_linux, Libde265 | 6.5 | ||
| 2022-01-10 | CVE-2021-36408 | An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. | Debian_linux, Libde265 | 5.5 | ||
| 2022-01-10 | CVE-2021-36409 | There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact. | Debian_linux, Libde265 | 7.8 | ||
| 2022-01-10 | CVE-2021-36410 | A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. | Debian_linux, Libde265 | 5.5 | ||
| 2021-09-16 | CVE-2020-21594 | libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback function, which can be exploited via a crafted a file. | Libde265 | 6.5 |