Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/183882?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "type": "deb", "namespace": "debian", "name": "libde265", "version": "1.0.15-1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1.0.3-1", "latest_non_vulnerable_version": "1.0.18-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/328602?format=api", "vulnerability_id": "VCID-3azb-mxtp-cbe1", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33165", "reference_id": "", "reference_type": "", "scores": [ { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00325", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33165" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131468", "reference_id": "1131468", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131468" }, { "reference_url": "https://github.com/strukturag/libde265/commit/c7891e412106130b83f8e8ea8b7f907e9449b658", "reference_id": "c7891e412106130b83f8e8ea8b7f907e9449b658", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T18:45:05Z/" } ], "url": "https://github.com/strukturag/libde265/commit/c7891e412106130b83f8e8ea8b7f907e9449b658" }, { "reference_url": "https://github.com/strukturag/libde265/security/advisories/GHSA-653q-9f73-8hvg", "reference_id": "GHSA-653q-9f73-8hvg", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T18:45:05Z/" } ], "url": "https://github.com/strukturag/libde265/security/advisories/GHSA-653q-9f73-8hvg" }, { "reference_url": "https://github.com/strukturag/libde265/releases/tag/v1.0.17", "reference_id": "v1.0.17", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T18:45:05Z/" } ], "url": "https://github.com/strukturag/libde265/releases/tag/v1.0.17" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33165" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3azb-mxtp-cbe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/310816?format=api", "vulnerability_id": "VCID-7de8-hk93-e3ae", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61147", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06212", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61147" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129257", "reference_id": "1129257", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129257" }, { "reference_url": "https://github.com/strukturag/libde265/issues/484", "reference_id": "484", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T20:30:18Z/" } ], "url": "https://github.com/strukturag/libde265/issues/484" }, { "reference_url": "https://github.com/strukturag/libde265/commit/8b17e0930f77db07f55e0b89399a8f054ddbecf7", "reference_id": "8b17e0930f77db07f55e0b89399a8f054ddbecf7", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T20:30:18Z/" } ], "url": "https://github.com/strukturag/libde265/commit/8b17e0930f77db07f55e0b89399a8f054ddbecf7" }, { "reference_url": "https://gist.github.com/optionGo/e6567a1c2bc4e0c9fee4e1e8be8d6af9", "reference_id": "e6567a1c2bc4e0c9fee4e1e8be8d6af9", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T20:30:18Z/" } ], "url": "https://gist.github.com/optionGo/e6567a1c2bc4e0c9fee4e1e8be8d6af9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-61147" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7de8-hk93-e3ae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/328601?format=api", "vulnerability_id": "VCID-7nst-d47y-skbm", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26259", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-33164" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131469", "reference_id": "1131469", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131469" }, { "reference_url": "https://github.com/strukturag/libde265/security/advisories/GHSA-wqrf-6rf5-v78r", "reference_id": "GHSA-wqrf-6rf5-v78r", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-23T16:50:40Z/" } ], "url": "https://github.com/strukturag/libde265/security/advisories/GHSA-wqrf-6rf5-v78r" }, { "reference_url": "https://github.com/strukturag/libde265/releases/tag/v1.0.17", "reference_id": "v1.0.17", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-23T16:50:40Z/" } ], "url": "https://github.com/strukturag/libde265/releases/tag/v1.0.17" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33164" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7nst-d47y-skbm" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5033?format=api", "vulnerability_id": "VCID-14db-749q-3qga", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21603", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21603" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21603" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-14db-749q-3qga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/290974?format=api", "vulnerability_id": "VCID-18kn-tqe9-33df", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-29482", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33405", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-29482" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103837", "reference_id": "1103837", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103837" }, { "reference_url": "https://github.com/lmarch2/poc/blob/main/libheif/libheif.md", "reference_id": "libheif.md", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-09T14:57:30Z/" } ], "url": "https://github.com/lmarch2/poc/blob/main/libheif/libheif.md" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183892?format=api", "purl": "pkg:deb/debian/libde265@1.0.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-29482" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-18kn-tqe9-33df" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16983?format=api", "vulnerability_id": "VCID-1crc-jgdq-f3dg", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_hevc_epel_pixels_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24752", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.10289", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24752" }, { "reference_url": "https://github.com/strukturag/libde265/issues/378", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:36:36Z/" } ], "url": "https://github.com/strukturag/libde265/issues/378" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:36:36Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24752", "reference_id": "CVE-2023-24752", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24752" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24752" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1crc-jgdq-f3dg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206331?format=api", "vulnerability_id": "VCID-1cyy-hgru-akgr", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43252", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43252" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/347", "reference_id": "347", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:35:16Z/" } ], "url": "https://github.com/strukturag/libde265/issues/347" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:35:16Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:35:16Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43252" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1cyy-hgru-akgr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5039?format=api", "vulnerability_id": "VCID-1d34-z26z-kug2", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50521", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21597" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21597" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1d34-z26z-kug2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5038?format=api", "vulnerability_id": "VCID-1qcy-k1bb-w3e3", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51729", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21598" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963", "reference_id": "1004963", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21598" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1qcy-k1bb-w3e3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5036?format=api", "vulnerability_id": "VCID-23u3-c8kn-ffee", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38741", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21600" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963", "reference_id": "1004963", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21600" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-23u3-c8kn-ffee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206319?format=api", "vulnerability_id": "VCID-4ftq-jkq5-x7ej", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43237", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43237" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/344", "reference_id": "344", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://github.com/strukturag/libde265/issues/344" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:44:50Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43237" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4ftq-jkq5-x7ej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206327?format=api", "vulnerability_id": "VCID-4nse-jmar-6ueb", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43245", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53533", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43245" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029357", "reference_id": "1029357", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029357" }, { "reference_url": "https://github.com/strukturag/libde265/issues/352", "reference_id": "352", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:48:03Z/" } ], "url": "https://github.com/strukturag/libde265/issues/352" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:48:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:48:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43245" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4nse-jmar-6ueb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5041?format=api", "vulnerability_id": "VCID-4sum-7pay-1kam", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21595" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21595" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4sum-7pay-1kam" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14641?format=api", "vulnerability_id": "VCID-5pkw-zxxy-p7bn", "summary": "Out-of-bounds Read\nAn issue has been found in libde265 v1.0.8 due to incorrect access control. A SEGV caused by a READ memory access in function `derive_boundaryStrength` of `deblock.cc` has occurred. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36411", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36033", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36411" }, { "reference_url": "https://github.com/strukturag/libde265/issues/302", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/302" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36411", "reference_id": "CVE-2021-36411", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36411" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-36411" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5pkw-zxxy-p7bn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14628?format=api", "vulnerability_id": "VCID-5srn-2sfd-5be1", "summary": "An Out-of-bounds Read vulnerability exists in libde265 due to a SEGV in `slice.cc`.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-35452", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33175", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-35452" }, { "reference_url": "https://github.com/strukturag/libde265/issues/298", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/298" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-35452", "reference_id": "CVE-2021-35452", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-35452" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-35452" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5srn-2sfd-5be1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14630?format=api", "vulnerability_id": "VCID-61un-k2qx-vugt", "summary": "Use After Free\nThere is a Heap-use-after-free in `intrapred.h` when decoding a file using `dec265`.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36408", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.2784", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36408" }, { "reference_url": "https://github.com/strukturag/libde265/issues/299", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/299" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36408", "reference_id": "CVE-2021-36408", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36408" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-36408" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-61un-k2qx-vugt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14638?format=api", "vulnerability_id": "VCID-728j-byyt-t7bc", "summary": "Reachable Assertion\nThere is an Assertion `scaling_list_pred_matrix_id_delta==1` failed at `sps.cc:925` in libde265 when decoding a file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.36697", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36409" }, { "reference_url": "https://github.com/strukturag/libde265/issues/300", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/300" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36409", "reference_id": "CVE-2021-36409", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36409" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-36409" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-728j-byyt-t7bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206328?format=api", "vulnerability_id": "VCID-795w-1huc-ybht", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43248", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43248" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816", "reference_id": "1025816", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816" }, { "reference_url": "https://github.com/strukturag/libde265/issues/349", "reference_id": "349", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:40:03Z/" } ], "url": "https://github.com/strukturag/libde265/issues/349" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:40:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:40:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43248" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-795w-1huc-ybht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206326?format=api", "vulnerability_id": "VCID-7p7j-ygsg-w3gq", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43244", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53533", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/342", "reference_id": "342", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:49:58Z/" } ], "url": "https://github.com/strukturag/libde265/issues/342" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:49:58Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:49:58Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43244" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7p7j-ygsg-w3gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5040?format=api", "vulnerability_id": "VCID-7wcu-ekc9-h7en", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00269", "scoring_system": "epss", "scoring_elements": "0.50521", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21596" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029397", "reference_id": "1029397", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029397" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21596" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7wcu-ekc9-h7en" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16974?format=api", "vulnerability_id": "VCID-8ep6-cs6a-fua1", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24758", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.10289", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24758" }, { "reference_url": "https://github.com/strukturag/libde265/issues/383", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:34:24Z/" } ], "url": "https://github.com/strukturag/libde265/issues/383" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:34:24Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24758", "reference_id": "CVE-2023-24758", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24758" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24758" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8ep6-cs6a-fua1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5034?format=api", "vulnerability_id": "VCID-9guf-zht3-eyha", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38741", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21602" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963", "reference_id": "1004963", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004963" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21602" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9guf-zht3-eyha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206332?format=api", "vulnerability_id": "VCID-9k3k-7e5p-e3b4", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43253" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816", "reference_id": "1025816", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816" }, { "reference_url": "https://github.com/strukturag/libde265/issues/348", "reference_id": "348", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:33:24Z/" } ], "url": "https://github.com/strukturag/libde265/issues/348" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:33:24Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:33:24Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43253" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9k3k-7e5p-e3b4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18830?format=api", "vulnerability_id": "VCID-bn6d-taem-gfeg", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nBuffer Overflow vulnerability in strukturag libde265 v1.10.12 allows a local attacker to cause a denial of service via the slice_segment_header function in the slice.cc component.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47471", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53513", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-47471" }, { "reference_url": "https://github.com/strukturag/libde265/commit/e36b4a1b0bafa53df47514c419d5be3e8916ebc7", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/commit/e36b4a1b0bafa53df47514c419d5be3e8916ebc7" }, { "reference_url": "https://github.com/strukturag/libde265/issues/426", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/426" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056187", "reference_id": "1056187", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056187" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47471", "reference_id": "CVE-2023-47471", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47471" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183888?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183887?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183890?format=api", "purl": "pkg:deb/debian/libde265@1.0.13-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.13-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-47471" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bn6d-taem-gfeg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/208809?format=api", "vulnerability_id": "VCID-brx5-g9dz-hygf", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47655", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11837", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47655" }, { "reference_url": "https://github.com/strukturag/libde265/issues/367", "reference_id": "367", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://github.com/strukturag/libde265/issues/367" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-10T14:27:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-47655" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-brx5-g9dz-hygf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16994?format=api", "vulnerability_id": "VCID-cx6s-gx97-cudx", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nLibde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15241", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47664" }, { "reference_url": "https://github.com/strukturag/libde265/issues/368", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T16:29:29Z/" } ], "url": "https://github.com/strukturag/libde265/issues/368" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47664", "reference_id": "CVE-2022-47664", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47664" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-47664" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cx6s-gx97-cudx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14635?format=api", "vulnerability_id": "VCID-dj35-f5dk-zyc9", "summary": "Out-of-bounds Write\nA stack-buffer-overflow exists in libde265 via `fallback-motion.cc` in function `put_epel_hv_fallback` when running program `dec265`.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36410", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25121", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-36410" }, { "reference_url": "https://github.com/strukturag/libde265/issues/301", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/301" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36410", "reference_id": "CVE-2021-36410", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36410" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-36410" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dj35-f5dk-zyc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5031?format=api", "vulnerability_id": "VCID-dng6-2ycu-rbcb", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21605", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31629", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21605" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21605" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dng6-2ycu-rbcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16981?format=api", "vulnerability_id": "VCID-eaue-8qs5-5qct", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24751", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0036", "scoring_system": "epss", "scoring_elements": "0.58434", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24751" }, { "reference_url": "https://github.com/strukturag/libde265/issues/379", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:37:46Z/" } ], "url": "https://github.com/strukturag/libde265/issues/379" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T17:37:46Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24751", "reference_id": "CVE-2023-24751", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24751" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24751" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eaue-8qs5-5qct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17096?format=api", "vulnerability_id": "VCID-etnd-e921-b7f2", "summary": "Out-of-bounds Write\nLibde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27103", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66725", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27103" }, { "reference_url": "https://github.com/strukturag/libde265/issues/394", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/394" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033257", "reference_id": "1033257", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033257" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27103", "reference_id": "CVE-2023-27103", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27103" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183888?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183887?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183889?format=api", "purl": "pkg:deb/debian/libde265@1.0.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.12-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-27103" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-etnd-e921-b7f2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16976?format=api", "vulnerability_id": "VCID-f5de-n6k9-tqaz", "summary": "Out-of-bounds Write\nLibde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in motion.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25221", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11663", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25221" }, { "reference_url": "https://github.com/strukturag/libde265/issues/388", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-03-07T17:35:11Z/" } ], "url": "https://github.com/strukturag/libde265/issues/388" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-03-07T17:35:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25221", "reference_id": "CVE-2023-25221", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25221" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-25221" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f5de-n6k9-tqaz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206330?format=api", "vulnerability_id": "VCID-fnnc-axrn-8khe", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43250", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53533", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43250" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/346", "reference_id": "346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://github.com/strukturag/libde265/issues/346" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:36:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43250" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fnnc-axrn-8khe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206322?format=api", "vulnerability_id": "VCID-gt51-cug5-bqhz", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43240", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43240" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/335", "reference_id": "335", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://github.com/strukturag/libde265/issues/335" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:49:13Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43240" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gt51-cug5-bqhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206317?format=api", "vulnerability_id": "VCID-h1dr-3yj4-efgq", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43235", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43235" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/337", "reference_id": "337", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:47:16Z/" } ], "url": "https://github.com/strukturag/libde265/issues/337" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:47:16Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:47:16Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43235" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h1dr-3yj4-efgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18882?format=api", "vulnerability_id": "VCID-hrx7-132p-eyfg", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nLibde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function pic_parameter_set::dump.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-43887", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37448", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-43887" }, { "reference_url": "https://github.com/strukturag/libde265/commit/63b596c915977f038eafd7647d1db25488a8c133", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T19:41:40Z/" } ], "url": "https://github.com/strukturag/libde265/commit/63b596c915977f038eafd7647d1db25488a8c133" }, { "reference_url": "https://github.com/strukturag/libde265/issues/418", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T19:41:40Z/" } ], "url": "https://github.com/strukturag/libde265/issues/418" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00032.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T19:41:40Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00032.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43887", "reference_id": "CVE-2023-43887", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43887" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183888?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183887?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183890?format=api", "purl": "pkg:deb/debian/libde265@1.0.13-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.13-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-43887" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hrx7-132p-eyfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206329?format=api", "vulnerability_id": "VCID-jes6-9hds-wka3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43249", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60427", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43249" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/345", "reference_id": "345", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://github.com/strukturag/libde265/issues/345" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:37:15Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43249" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jes6-9hds-wka3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16971?format=api", "vulnerability_id": "VCID-m552-seqr-eqak", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.10289", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24756" }, { "reference_url": "https://github.com/strukturag/libde265/issues/380", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:35:17Z/" } ], "url": "https://github.com/strukturag/libde265/issues/380" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:35:17Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24756", "reference_id": "CVE-2023-24756", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24756" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24756" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m552-seqr-eqak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5037?format=api", "vulnerability_id": "VCID-mavj-1s6k-fbfx", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39444", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21599" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21599" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mavj-1s6k-fbfx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5032?format=api", "vulnerability_id": "VCID-mdcu-n7nv-yycz", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21604", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21604" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21604" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mdcu-n7nv-yycz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5042?format=api", "vulnerability_id": "VCID-mrq7-mtce-2qe9", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34095", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21594" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029396", "reference_id": "1029396", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029396" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183878?format=api", "purl": "pkg:deb/debian/libde265@1.0.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mrq7-mtce-2qe9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18994?format=api", "vulnerability_id": "VCID-n4sh-88ef-2bgh", "summary": "Out-of-bounds Write\nLibde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49465", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30602", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49465" }, { "reference_url": "https://github.com/strukturag/libde265/issues/435", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/435" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275", "reference_id": "1059275", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49465", "reference_id": "CVE-2023-49465", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49465" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-49465" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n4sh-88ef-2bgh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5035?format=api", "vulnerability_id": "VCID-pave-cya5-zbf5", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21601" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21601" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pave-cya5-zbf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15463?format=api", "vulnerability_id": "VCID-pdaa-ef9h-eyh2", "summary": "Out-of-bounds Write\nHeap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to and including 1.0.8. The fix is established in commit 8e89fe0e175d2870c39486fdd09250b230ec10b8 but does not yet belong to an official release.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65454", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1253" }, { "reference_url": "https://github.com/strukturag/libde265/commit/8e89fe0e175d2870c39486fdd09250b230ec10b8", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/commit/8e89fe0e175d2870c39486fdd09250b230ec10b8" }, { "reference_url": "https://huntr.dev/bounties/1-other-strukturag/libde265", "reference_id": "", "reference_type": "", "scores": [], "url": "https://huntr.dev/bounties/1-other-strukturag/libde265" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977", "reference_id": "1014977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014977" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1253", "reference_id": "CVE-2022-1253", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1253" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183885?format=api", "purl": "pkg:deb/debian/libde265@1.0.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-1253" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pdaa-ef9h-eyh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18997?format=api", "vulnerability_id": "VCID-pz3p-j8mq-77ae", "summary": "Out-of-bounds Write\nLibde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49468", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.39842", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49468" }, { "reference_url": "https://github.com/strukturag/libde265/issues/432", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-28T16:19:23Z/" } ], "url": "https://github.com/strukturag/libde265/issues/432" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275", "reference_id": "1059275", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49468", "reference_id": "CVE-2023-49468", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49468" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00022.html", "reference_id": "msg00022.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-28T16:19:23Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00022.html" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-49468" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pz3p-j8mq-77ae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206321?format=api", "vulnerability_id": "VCID-s3dz-e3c2-uqad", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43239", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43239" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/341", "reference_id": "341", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://github.com/strukturag/libde265/issues/341" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:57:25Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43239" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s3dz-e3c2-uqad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16977?format=api", "vulnerability_id": "VCID-t3p7-1a7s-jkf6", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24757", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.068", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24757" }, { "reference_url": "https://github.com/strukturag/libde265/issues/385", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T16:06:34Z/" } ], "url": "https://github.com/strukturag/libde265/issues/385" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T16:06:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24757", "reference_id": "CVE-2023-24757", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24757" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24757" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t3p7-1a7s-jkf6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16982?format=api", "vulnerability_id": "VCID-t4ef-ythe-jfa9", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_weighted_pred_8_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24755", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.10289", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24755" }, { "reference_url": "https://github.com/strukturag/libde265/issues/384", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:36:15Z/" } ], "url": "https://github.com/strukturag/libde265/issues/384" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:36:15Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24755", "reference_id": "CVE-2023-24755", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24755" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24755" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ef-ythe-jfa9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/236192?format=api", "vulnerability_id": "VCID-t9wp-11kv-tkdc", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-51792", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.04106", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-51792" }, { "reference_url": "https://github.com/strukturag/libde265/issues/427", "reference_id": "427", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T00:39:19Z/" } ], "url": "https://github.com/strukturag/libde265/issues/427" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/", "reference_id": "6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T00:39:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/", "reference_id": "IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T00:39:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/", "reference_id": "LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T00:39:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/" }, { "reference_url": "https://github.com/strukturag/libde265", "reference_id": "libde265", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T00:39:19Z/" } ], "url": "https://github.com/strukturag/libde265" }, { "reference_url": "https://usn.ubuntu.com/6764-1/", "reference_id": "USN-6764-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6764-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183891?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183890?format=api", "purl": "pkg:deb/debian/libde265@1.0.13-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.13-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-51792" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t9wp-11kv-tkdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206318?format=api", "vulnerability_id": "VCID-u92t-emk9-2ud5", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43236", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56548", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43236" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/343", "reference_id": "343", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:46:18Z/" } ], "url": "https://github.com/strukturag/libde265/issues/343" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:46:18Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:46:18Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43236" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u92t-emk9-2ud5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17098?format=api", "vulnerability_id": "VCID-ujk8-vvyu-skhn", "summary": "NULL Pointer Dereference\nLibde265 v1.0.11 was discovered to contain a segmentation violation via the function decoder_context::process_slice_segment_header at decctx.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.54965", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27102" }, { "reference_url": "https://github.com/strukturag/libde265/issues/393", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/393" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033257", "reference_id": "1033257", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033257" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27102", "reference_id": "CVE-2023-27102", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27102" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183888?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183887?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183889?format=api", "purl": "pkg:deb/debian/libde265@1.0.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.12-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-27102" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ujk8-vvyu-skhn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16975?format=api", "vulnerability_id": "VCID-vdq8-ksuf-u7hk", "summary": "NULL Pointer Dereference\nlibde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.10289", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-24754" }, { "reference_url": "https://github.com/strukturag/libde265/issues/382", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:37:06Z/" } ], "url": "https://github.com/strukturag/libde265/issues/382" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T20:37:06Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24754", "reference_id": "CVE-2023-24754", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24754" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-24754" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vdq8-ksuf-u7hk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206325?format=api", "vulnerability_id": "VCID-vptc-wjht-m7an", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43243", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00256", "scoring_system": "epss", "scoring_elements": "0.49166", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43243" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816", "reference_id": "1025816", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025816" }, { "reference_url": "https://github.com/strukturag/libde265/issues/339", "reference_id": "339", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:51:22Z/" } ], "url": "https://github.com/strukturag/libde265/issues/339" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:51:22Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:51:22Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43243" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vptc-wjht-m7an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5030?format=api", "vulnerability_id": "VCID-xtqm-64zj-cfht", "summary": "multiple issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21606", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32439", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-21606" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999", "reference_id": "1014999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014999" }, { "reference_url": "https://security.archlinux.org/AVG-2396", "reference_id": "AVG-2396", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2396" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6617-1/", "reference_id": "USN-6617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6617-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183883?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-21606" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xtqm-64zj-cfht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206324?format=api", "vulnerability_id": "VCID-xx18-u8wg-xub9", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43242", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60427", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43242" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/340", "reference_id": "340", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://github.com/strukturag/libde265/issues/340" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T13:52:54Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43242" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xx18-u8wg-xub9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16991?format=api", "vulnerability_id": "VCID-y7ww-1ss5-jkhq", "summary": "Out-of-bounds Write\nLibde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int, int, int)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15358", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47665" }, { "reference_url": "https://github.com/strukturag/libde265/issues/369", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-07T16:31:02Z/" } ], "url": "https://github.com/strukturag/libde265/issues/369" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47665", "reference_id": "CVE-2022-47665", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47665" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://usn.ubuntu.com/6659-1/", "reference_id": "USN-6659-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6659-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183884?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-47665" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y7ww-1ss5-jkhq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206323?format=api", "vulnerability_id": "VCID-z28x-b9bz-bye3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43241", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00299", "scoring_system": "epss", "scoring_elements": "0.53533", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43241" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/338", "reference_id": "338", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:47:50Z/" } ], "url": "https://github.com/strukturag/libde265/issues/338" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:47:50Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T14:47:50Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43241" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z28x-b9bz-bye3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/206320?format=api", "vulnerability_id": "VCID-z4d3-749f-ykg3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43238", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00288", "scoring_system": "epss", "scoring_elements": "0.52494", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43238" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179", "reference_id": "1027179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027179" }, { "reference_url": "https://github.com/strukturag/libde265/issues/336", "reference_id": "336", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://github.com/strukturag/libde265/issues/336" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5346", "reference_id": "dsa-5346", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5346" }, { "reference_url": "https://security.gentoo.org/glsa/202408-20", "reference_id": "GLSA-202408-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-20" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T20:43:14Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00020.html" }, { "reference_url": "https://usn.ubuntu.com/6627-1/", "reference_id": "USN-6627-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6627-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183886?format=api", "purl": "pkg:deb/debian/libde265@1.0.9-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.9-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183880?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43238" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4d3-749f-ykg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18993?format=api", "vulnerability_id": "VCID-zjxv-1f3w-4qc3", "summary": "Out-of-bounds Write\nLibde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates function at motion.cc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49467", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00149", "scoring_system": "epss", "scoring_elements": "0.35161", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-49467" }, { "reference_url": "https://github.com/strukturag/libde265/issues/434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/strukturag/libde265/issues/434" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275", "reference_id": "1059275", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059275" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49467", "reference_id": "CVE-2023-49467", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49467" }, { "reference_url": "https://usn.ubuntu.com/6677-1/", "reference_id": "USN-6677-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6677-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/183879?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-0%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7de8-hk93-e3ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-0%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183877?format=api", "purl": "pkg:deb/debian/libde265@1.0.11-1%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" }, { "vulnerability": "VCID-t9wp-11kv-tkdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.11-1%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183882?format=api", "purl": "pkg:deb/debian/libde265@1.0.15-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3azb-mxtp-cbe1" }, { "vulnerability": "VCID-7de8-hk93-e3ae" }, { "vulnerability": "VCID-7nst-d47y-skbm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/183881?format=api", "purl": "pkg:deb/debian/libde265@1.0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.18-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-49467" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjxv-1f3w-4qc3" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libde265@1.0.15-1%3Fdistro=trixie" }