Bugs fixes in "libde265"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2022-43235 | Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc. This vulnerab | 2024-02-08 |
| CVE | CVE-2022-43236 | Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vul | 2024-02-08 |
| CVE | CVE-2022-1253 | Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to and including 1.0.8. The fix is established in commit 8e89fe0e175d2870c3 | 2024-02-08 |
| CVE | CVE-2021-36411 | An issue has been found in libde265 v1.0.8 due to incorrect access control. A SEGV caused by a READ memory access in function derive_boundaryStrength | 2024-02-08 |
| CVE | CVE-2021-36410 | A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. | 2024-02-08 |
| CVE | CVE-2021-36409 | There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to ca | 2024-02-08 |
| CVE | CVE-2021-36408 | An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. | 2024-02-08 |
| CVE | CVE-2021-35452 | An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc. | 2024-02-08 |
| CVE | CVE-2020-21606 | libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallback function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21598 | libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21597 | libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2021-36408 | An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. | 2024-01-30 |
| CVE | CVE-2020-21604 | libde265 v1.0.4 contains a heap buffer overflow fault in the _mm_loadl_epi64 function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21603 | libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21602 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21601 | libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21600 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_fallback function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21599 | libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21595 | libde265 v1.0.4 contains a heap buffer overflow in the mc_luma function, which can be exploited via a crafted a file. | 2024-01-30 |
| CVE | CVE-2020-21605 | libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function, which can be exploited via a crafted a file. | 2024-01-30 |
About
-
Send Feedback to @ubuntu_updates
