Search for packages
| purl | pkg:deb/debian/libde265@1.0.2-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-16s5-qe4g-27dn
Aliases: CVE-2023-24758 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-17yr-5crd-9bd7
Aliases: CVE-2023-47471 |
Buffer Overflow vulnerability in strukturag libde265 v1.10.12 allows a local attacker to cause a denial of service via the slice_segment_header function in the slice.cc component. |
Affected by 4 other vulnerabilities. |
|
VCID-1d8a-qwu7-6ubu
Aliases: CVE-2022-47664 |
Libde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse |
Affected by 4 other vulnerabilities. |
|
VCID-1krz-93s3-cbc2
Aliases: CVE-2022-43238 |
Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_h_3_v_3_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-29j1-114z-puh6
Aliases: CVE-2022-43245 |
Libde265 v1.0.8 was discovered to contain a segmentation violation via apply_sao_internal<unsigned short> in sao.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-2qfz-ptxv-yyhx
Aliases: CVE-2020-21597 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-3ece-1spc-qyfd
Aliases: CVE-2021-36411 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-3gv9-4mcj-67ez
Aliases: CVE-2022-43239 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via mc_chroma<unsigned short> in motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-495m-nqfz-xyd2
Aliases: CVE-2023-49465 |
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-4hz5-gkxc-myhh
Aliases: CVE-2020-21598 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-4wrt-zt96-77c1
Aliases: CVE-2023-24756 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-61t3-txeb-fybg
Aliases: CVE-2023-24754 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-6gzs-mz4s-huhk
Aliases: CVE-2021-36410 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-7jy9-gusa-zfgy
Aliases: CVE-2023-43887 |
Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function pic_parameter_set::dump. |
Affected by 4 other vulnerabilities. |
|
VCID-89rw-hrxn-mffc
Aliases: CVE-2025-29482 |
Affected by 4 other vulnerabilities. |
|
|
VCID-8gp2-tyg5-3ugu
Aliases: CVE-2023-27103 |
Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-8xyw-d4nb-4fdd
Aliases: CVE-2022-43248 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_weighted_pred_avg_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-9cax-fubj-vqdv
Aliases: CVE-2020-21602 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-9g2x-2aya-hfhz
Aliases: CVE-2023-24751 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-9s66-m6ck-8fad
Aliases: CVE-2023-51792 |
Buffer Overflow vulnerability in libde265 v1.0.12 allows a local attacker to cause a denial of service via the allocation size exceeding the maximum supported size of 0x10000000000. |
Affected by 4 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-9ysc-gst8-5fer
Aliases: CVE-2020-21604 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-aa8h-zumx-xbek
Aliases: CVE-2023-49468 |
Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-aah1-grtf-subc
Aliases: CVE-2022-43236 |
Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-anyy-seeu-qkcx
Aliases: CVE-2020-21603 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-b3xx-281b-fqhj
Aliases: CVE-2026-33164 |
libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in pic_parameter_set::set_derived_values(). This issue has been patched in version 1.0.17. |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-cs75-6eq8-8fef
Aliases: CVE-2023-24755 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_weighted_pred_8_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-cz8z-8wg8-hyhk
Aliases: CVE-2022-43253 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_unweighted_pred_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-e43c-pbyd-8qep
Aliases: CVE-2022-43241 |
Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_v_3_8_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-fbdw-a6k7-9ke9
Aliases: CVE-2021-36409 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-hyhm-9927-67hg
Aliases: CVE-2022-1253 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-jbdm-za81-hub3
Aliases: CVE-2020-21599 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-jtgx-13j3-1faj
Aliases: CVE-2022-43237 |
Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void put_epel_hv_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-jw88-s1kr-6bdg
Aliases: CVE-2023-24757 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-jysv-3m2x-zbcw
Aliases: CVE-2020-21596 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-k1k2-fb49-z7hg
Aliases: CVE-2022-43244 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-kjq7-av5s-rfhs
Aliases: CVE-2022-47655 |
Libde265 1.0.9 is vulnerable to Buffer Overflow in function void put_qpel_fallback<unsigned short> |
Affected by 4 other vulnerabilities. |
|
VCID-m6zk-umrb-buh5
Aliases: CVE-2020-21601 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-n5ky-1b3z-r7eq
Aliases: CVE-2022-43252 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-pcpw-dv5y-27as
Aliases: CVE-2022-43235 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-pfe6-3uj7-euhf
Aliases: CVE-2020-21606 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-pggn-2yka-xffp
Aliases: CVE-2022-47665 |
Libde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int, int, int) |
Affected by 4 other vulnerabilities. |
|
VCID-q3ut-6y8h-ukd7
Aliases: CVE-2023-49467 |
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates function at motion.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-q92w-bha5-ffh5
Aliases: CVE-2021-35452 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-re77-hszw-23cz
Aliases: CVE-2022-43240 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_qpel_h_2_v_1_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-rt89-y2fm-eke7
Aliases: CVE-2020-21594 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-s7h4-xy9z-y7h1
Aliases: CVE-2022-43250 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_0_0_fallback_16 in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-tgub-bhkq-wuae
Aliases: CVE-2026-33165 |
libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a crafted HEVC bitstream causes an out-of-bounds heap write confirmed by AddressSanitizer. The trigger is a stale ctb_info.log2unitSize after an SPS change where PicWidthInCtbsY and PicHeightInCtbsY stay constant but Log2CtbSizeY changes, causing set_SliceHeaderIndex to index past the allocated image metadata array and write 2 bytes past the end of a heap allocation. This issue has been patched in version 1.0.17. |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-turs-twan-2qdv
Aliases: CVE-2023-24752 |
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_hevc_epel_pixels_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file. |
Affected by 4 other vulnerabilities. |
|
VCID-vyyd-a4g5-k3gt
Aliases: CVE-2022-43243 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_weighted_pred_avg_8_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-wm6d-1wgz-kbg6
Aliases: CVE-2020-21595 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-wrds-54bw-k3ek
Aliases: CVE-2021-36408 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-x29f-hvsh-8qcb
Aliases: CVE-2020-21605 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
|
VCID-xf46-yu8y-zfgu
Aliases: CVE-2023-25221 |
Libde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in motion.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-y6js-xcze-hydb
Aliases: CVE-2023-27102 |
Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decoder_context::process_slice_segment_header at decctx.cc. |
Affected by 4 other vulnerabilities. |
|
VCID-yej4-61ca-fbgu
Aliases: CVE-2022-43249 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_hv_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-z5kp-jcrd-f3dp
Aliases: CVE-2022-43242 |
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via mc_luma<unsigned char> in motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file. |
Affected by 4 other vulnerabilities. |
|
VCID-zqdc-7mhc-xuch
Aliases: CVE-2020-21600 |
Multiple vulnerabilities have been discovered in libde265, the worst of which could lead to arbitrary code execution. |
Affected by 4 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||