Summary: | media-libs/libde265: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | media-video |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [upstream] | ||
Package list: | Runtime testing required: | --- |
Description
John Helmert III
![]() ![]() CVE-2021-36409 (https://github.com/strukturag/libde265/issues/300): There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file or possibly have unspecified other impact. CVE-2021-36410 (https://github.com/strukturag/libde265/issues/301): A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. CVE-2021-36411 (https://github.com/strukturag/libde265/issues/302): An issue has been found in libde265 v1.0.8 due to incorrect access control. A SEGV caused by a READ memory access in function derive_boundaryStrength of deblock.cc has occurred. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service. CVE-2021-36408 (https://github.com/strukturag/libde265/issues/299): An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. CVE-2021-35452 (https://github.com/strukturag/libde265/issues/298): An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc. All seem unpatched. CVE-2022-1253 (https://huntr.dev/bounties/1-other-strukturag/libde265): Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to 1.0.8. CVE appears wrong. Patch doesn't seem to be in any releases: https://github.com/strukturag/libde265/commit/8e89fe0e175d2870c39486fdd09250b230ec10b8 |