Debian Libde265 vulnerabilities

60 known vulnerabilities affecting debian/libde265.

Total CVEs
60
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH12MEDIUM45LOW2

Vulnerabilities

Page 3 of 3
CVE-2022-43244MEDIUMCVSS 6.5fixed in libde265 1.0.9-1.1 (bookworm)2022
CVE-2022-43244 [MEDIUM] CVE-2022-43244: libde265 - Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability v... Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. Scope: local bookworm: resolved (fixed in 1.0.9-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1.1) sid: re
debian
CVE-2022-43236MEDIUMCVSS 6.5fixed in libde265 1.0.9-1.1 (bookworm)2022
CVE-2022-43236 [MEDIUM] CVE-2022-43236: libde265 - Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability ... Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. Scope: local bookworm: resolved (fixed in 1.0.9-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1.1) sid: r
debian
CVE-2021-36409HIGHCVSS 7.8fixed in libde265 1.0.8-1.1 (bookworm)2021
CVE-2021-36409 [HIGH] CVE-2021-36409: libde265 - There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:92... There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact. Scope: local bookworm: resolved (fixed in 1.0.8-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1
debian
CVE-2021-36410MEDIUMCVSS 5.5fixed in libde265 1.0.8-1.1 (bookworm)2021
CVE-2021-36410 [MEDIUM] CVE-2021-36410: libde265 - A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in func... A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. Scope: local bookworm: resolved (fixed in 1.0.8-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.8-1.1) sid: resolved (fixed in 1.0.8-1.1) trixie: resolved (fixed in 1.0.8-1.1)
debian
CVE-2021-35452MEDIUMCVSS 6.5fixed in libde265 1.0.8-1.1 (bookworm)2021
CVE-2021-35452 [MEDIUM] CVE-2021-35452: libde265 - An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEG... An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc. Scope: local bookworm: resolved (fixed in 1.0.8-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.8-1.1) sid: resolved (fixed in 1.0.8-1.1) trixie: resolved (fixed in 1.0.8-1.1)
debian
CVE-2021-36411MEDIUMCVSS 5.5fixed in libde265 1.0.8-1.1 (bookworm)2021
CVE-2021-36411 [MEDIUM] CVE-2021-36411: libde265 - An issue has been found in libde265 v1.0.8 due to incorrect access control. A SE... An issue has been found in libde265 v1.0.8 due to incorrect access control. A SEGV caused by a READ memory access in function derive_boundaryStrength of deblock.cc has occurred. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service. Scope: local bookworm: resolved (fixed in 1.0.8-1.1) bullseye: resolved (fixe
debian
CVE-2021-36408MEDIUMCVSS 5.5fixed in libde265 1.0.8-1.1 (bookworm)2021
CVE-2021-36408 [MEDIUM] CVE-2021-36408: libde265 - An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in int... An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. Scope: local bookworm: resolved (fixed in 1.0.8-1.1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.8-1.1) sid: resolved (fixed in 1.0.8-1.1) trixie: resolved (fixed in 1.0.8-1.1)
debian
CVE-2020-21598HIGHCVSS 8.8fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21598 [HIGH] CVE-2020-21598: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pr... libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21605MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21605 [MEDIUM] CVE-2020-21605: libde265 - libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function... libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21595MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21595 [MEDIUM] CVE-2020-21595: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the mc_luma function, which c... libde265 v1.0.4 contains a heap buffer overflow in the mc_luma function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21596MEDIUMCVSS 6.5fixed in libde265 1.0.11-1 (bookworm)2020
CVE-2020-21596 [MEDIUM] CVE-2020-21596: libde265 - libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit functi... libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.11-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.11-1) sid: resolved (fixed in 1.0.11-1) trixie: resolved (fixed in 1.0.11-1)
debian
CVE-2020-21594MEDIUMCVSS 6.5fixed in libde265 1.0.3-1 (bookworm)2020
CVE-2020-21594 [MEDIUM] CVE-2020-21594: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback func... libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.3-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.3-1) sid: resolved (fixed in 1.0.3-1) trixie: resolved (fixed in 1.0.3-1)
debian
CVE-2020-21606MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21606 [MEDIUM] CVE-2020-21606: libde265 - libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallbac... libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallback function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21600MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21600 [MEDIUM] CVE-2020-21600: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_... libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_fallback function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21599MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21599 [MEDIUM] CVE-2020-21599: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zs... libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21604MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21604 [MEDIUM] CVE-2020-21604: libde265 - libde265 v1.0.4 contains a heap buffer overflow fault in the _mm_loadl_epi64 fun... libde265 v1.0.4 contains a heap buffer overflow fault in the _mm_loadl_epi64 function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21597MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21597 [MEDIUM] CVE-2020-21597: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which... libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21603MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21603 [MEDIUM] CVE-2020-21603: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 ... libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21601MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21601 [MEDIUM] CVE-2020-21601: libde265 - libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback functi... libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
CVE-2020-21602MEDIUMCVSS 6.5fixed in libde265 1.0.9-1 (bookworm)2020
CVE-2020-21602 [MEDIUM] CVE-2020-21602: libde265 - libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fa... libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback function, which can be exploited via a crafted a file. Scope: local bookworm: resolved (fixed in 1.0.9-1) bullseye: resolved (fixed in 1.0.11-0+deb11u1) forky: resolved (fixed in 1.0.9-1) sid: resolved (fixed in 1.0.9-1) trixie: resolved (fixed in 1.0.9-1)
debian
← Previous3 / 3