Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-43250HistoryNov 02, 2022 - 2:15 p.m.
CVE-2022-43250
2022-11-0214:15:14
Alpine Linux Development Team
security.alpinelinux.org
22
libde265 vulnerability dos unix_heap-buffer-overflow crafted_video_file
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
High
EPSS
0.001
Percentile
47.9%
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_0_0_fallback_16 in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.16-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
| Alpine | 3.20-main | noarch | libde265 | < 1.0.11-r0 | UNKNOWN |
Related
prion
prion
Heap overflow
2022-11-02 14:15:00
osv
osv
CVE-2022-43250
2022-11-02 14:15:14
libde265 vulnerabilities
2024-02-26 18:50:31
libde265 - security update
2023-01-24 00:00:00
cve
cve
CVE-2022-43250
2022-11-02 14:15:14
ubuntucve
ubuntucve
CVE-2022-43250
2022-11-02 00:00:00
nvd
nvd
CVE-2022-43250
2022-11-02 14:15:14
debiancve
debiancve
CVE-2022-43250
2022-11-02 14:15:14
veracode
veracode
Denial Of Service (DoS)
2022-11-03 06:48:33
cvelist
cvelist
CVE-2022-43250
2022-11-02 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : libde265 vulnerabilities (USN-6659-1)
2024-02-27 00:00:00
Debian DLA-3280-1 : libde265 - LTS security update
2023-01-25 00:00:00
cloudfoundry
cloudfoundry
USN-6659-1: libde265 vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6659-1)
2024-02-27 00:00:00
Debian: Security Advisory (DLA-3280-1)
2023-01-25 00:00:00
Mageia: Security Advisory (MGASA-2023-0093)
2023-03-28 00:00:00
ubuntu
ubuntu
libde265 vulnerabilities
2024-02-26 00:00:00
debian
debian
[SECURITY] [DLA 3280-1] libde265 security update
2023-01-24 22:20:48
[SECURITY] [DSA 5346-1] libde265 security update
2023-02-10 19:38:07
freebsd
freebsd
libde256 -- multiple vulnerabilities
2023-01-27 00:00:00
mageia
mageia
Updated libde265 packages fix security vulnerability
2023-03-19 01:16:28
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
High
EPSS
0.001
Percentile
47.9%
Related for ALPINE:CVE-2022-43250