Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-43250HistoryNov 02, 2022 - 2:15 p.m.
CVE-2022-43250
2022-11-0214:15:14
Debian Security Bug Tracker
security-tracker.debian.org
15
cve-2022-43250
libde265
heap-buffer-overflow
fallback-motion.cc
denial of service
crafted video file
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
47.9%
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_0_0_fallback_16 in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libde265 | < 1.0.9-1.1 | libde265_1.0.9-1.1_all.deb |
| Debian | 11 | all | libde265 | < 1.0.11-0+deb11u1 | libde265_1.0.11-0+deb11u1_all.deb |
| Debian | 999 | all | libde265 | < 1.0.9-1.1 | libde265_1.0.9-1.1_all.deb |
| Debian | 13 | all | libde265 | < 1.0.9-1.1 | libde265_1.0.9-1.1_all.deb |
Related
prion
prion
Heap overflow
2022-11-02 14:15:00
osv
osv
CVE-2022-43250
2022-11-02 14:15:14
libde265 vulnerabilities
2024-02-26 18:50:31
libde265 - security update
2023-01-24 00:00:00
alpinelinux
alpinelinux
CVE-2022-43250
2022-11-02 14:15:14
cve
cve
CVE-2022-43250
2022-11-02 14:15:14
ubuntucve
ubuntucve
CVE-2022-43250
2022-11-02 00:00:00
nvd
nvd
CVE-2022-43250
2022-11-02 14:15:14
veracode
veracode
Denial Of Service (DoS)
2022-11-03 06:48:33
cvelist
cvelist
CVE-2022-43250
2022-11-02 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : libde265 vulnerabilities (USN-6659-1)
2024-02-27 00:00:00
Debian DLA-3280-1 : libde265 - LTS security update
2023-01-25 00:00:00
cloudfoundry
cloudfoundry
USN-6659-1: libde265 vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6659-1)
2024-02-27 00:00:00
Debian: Security Advisory (DLA-3280-1)
2023-01-25 00:00:00
Mageia: Security Advisory (MGASA-2023-0093)
2023-03-28 00:00:00
ubuntu
ubuntu
libde265 vulnerabilities
2024-02-26 00:00:00
debian
debian
[SECURITY] [DLA 3280-1] libde265 security update
2023-01-24 22:20:48
[SECURITY] [DSA 5346-1] libde265 security update
2023-02-10 19:38:07
freebsd
freebsd
libde256 -- multiple vulnerabilities
2023-01-27 00:00:00
mageia
mageia
Updated libde265 packages fix security vulnerability
2023-03-19 01:16:28
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
47.9%
Related for DEBIANCVE:CVE-2022-43250