Vulnerabilities > Struktur
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-06 | CVE-2022-1253 | Heap-based Buffer Overflow vulnerability in Struktur Libde265 Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to and including 1.0.8. | 9.8 |
| 2022-01-10 | CVE-2021-36408 | Use After Free vulnerability in multiple products An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. | 5.5 |
| 2022-01-10 | CVE-2021-36409 | Reachable Assertion vulnerability in multiple products There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact. | 7.8 |
| 2022-01-10 | CVE-2021-36410 | Out-of-bounds Write vulnerability in multiple products A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. | 5.5 |
| 2022-01-10 | CVE-2021-36411 | Out-of-bounds Read vulnerability in multiple products An issue has been found in libde265 v1.0.8 due to incorrect access control. | 5.5 |
| 2022-01-10 | CVE-2021-35452 | Out-of-bounds Read vulnerability in multiple products An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc. | 6.5 |
| 2021-11-03 | CVE-2020-23109 | Classic Buffer Overflow vulnerability in Struktur Libheif 1.6.2 Buffer overflow vulnerability in function convert_colorspace in heif_colorconversion.cc in libheif v1.6.2, allows attackers to cause a denial of service and disclose sensitive information, via a crafted HEIF file. | 8.1 |
| 2021-09-16 | CVE-2020-21594 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.4 libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback function, which can be exploited via a crafted a file. | 6.5 |
| 2021-09-16 | CVE-2020-21595 | Out-of-bounds Write vulnerability in Struktur Libde265 1.0.4 libde265 v1.0.4 contains a heap buffer overflow in the mc_luma function, which can be exploited via a crafted a file. | 6.5 |
| 2021-09-16 | CVE-2020-21596 | Classic Buffer Overflow vulnerability in multiple products libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit function, which can be exploited via a crafted a file. | 6.5 |