Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-43239HistoryNov 02, 2022 - 2:15 p.m.
CVE-2022-43239
2022-11-0214:15:13
Alpine Linux Development Team
security.alpinelinux.org
32
cve-2022-43239
libde265 v1.0.8
heap-buffer-overflow
motion.cc
denial of service
crafted video file
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
47.9%
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via mc_chroma<unsigned short> in motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.16-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.20-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2022-43239
2022-11-02 00:00:00
nvd
nvd
CVE-2022-43239
2022-11-02 14:15:13
veracode
veracode
Denial Of Service (DoS)
2022-11-03 06:55:20
prion
prion
Heap overflow
2022-11-02 14:15:00
cvelist
cvelist
CVE-2022-43239
2022-11-02 00:00:00
osv
osv
CVE-2022-43239
2022-11-02 14:15:13
libde265 vulnerabilities
2024-02-08 13:48:22
libde265 - security update
2023-01-24 00:00:00
debiancve
debiancve
CVE-2022-43239
2022-11-02 14:15:13
cve
cve
CVE-2022-43239
2022-11-02 14:15:13
openvas
openvas
Ubuntu: Security Advisory (USN-6627-1)
2024-02-09 00:00:00
Debian: Security Advisory (DLA-3280-1)
2023-01-25 00:00:00
Mageia: Security Advisory (MGASA-2023-0093)
2023-03-28 00:00:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : libde265 vulnerabilities (USN-6627-1)
2024-02-08 00:00:00
Debian DLA-3280-1 : libde265 - LTS security update
2023-01-25 00:00:00
ubuntu
ubuntu
libde265 vulnerabilities
2024-02-08 00:00:00
cloudfoundry
cloudfoundry
USN-6627-1: libde265 vulnerabilities | Cloud Foundry
2024-02-29 00:00:00
debian
debian
[SECURITY] [DLA 3280-1] libde265 security update
2023-01-24 22:20:48
[SECURITY] [DSA 5346-1] libde265 security update
2023-02-10 19:38:07
freebsd
freebsd
libde256 -- multiple vulnerabilities
2023-01-27 00:00:00
gentoo
gentoo
libde265: Multiple Vulnerabilities
2024-08-10 00:00:00
mageia
mageia
Updated libde265 packages fix security vulnerability
2023-03-19 01:16:28
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
47.9%
Related for ALPINE:CVE-2022-43239