Vulnerabilities > Struktur > Libde265 > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-07 | CVE-2023-49465 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.14 Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc. | 8.8 |
| 2023-12-07 | CVE-2023-49467 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.14 Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates function at motion.cc. | 8.8 |
| 2023-12-07 | CVE-2023-49468 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.14 Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc. | 8.8 |
| 2023-11-22 | CVE-2023-43887 | Classic Buffer Overflow vulnerability in Struktur Libde265 1.0.12 Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function pic_parameter_set::dump. | 8.1 |
| 2023-03-15 | CVE-2023-27103 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.11 Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc. | 8.8 |
| 2023-03-03 | CVE-2022-47664 | Classic Buffer Overflow vulnerability in Struktur Libde265 1.0.9 Libde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse | 7.8 |
| 2023-03-03 | CVE-2022-47665 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.9 Libde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int, int, int) | 7.8 |
| 2023-03-01 | CVE-2023-25221 | Out-of-bounds Write vulnerability in multiple products Libde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in motion.cc. | 7.8 |
| 2023-01-05 | CVE-2022-47655 | Out-of-bounds Write vulnerability in multiple products Libde265 1.0.9 is vulnerable to Buffer Overflow in function void put_qpel_fallback<unsigned short> | 7.8 |
| 2022-01-10 | CVE-2021-36409 | Reachable Assertion vulnerability in multiple products There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact. | 7.8 |