pkg:Debian/libde265
66 total CVEsCRITICAL1HIGH14MEDIUM50LOW1
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2022-1253Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to and including 1.0.8.from 0, < 1.0.11-0+deb11u1
- HIGH8.8CVE-2023-49468Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.from 0, < 1.0.11-0+deb11u3
- HIGH8.8CVE-2023-49467Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates func…from 0, < 1.0.11-0+deb11u3
- from 0, < 1.0.11-0+deb10u6
- from 0, < 1.0.11-0+deb11u3
- HIGH8.8CVE-2023-27103Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc.from 0, < 1.0.11-0+deb11u2
- HIGH8.8CVE-2020-21598libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse function, which can be exploited via a crafted a f…from 0, < 1.0.11-0+deb11u1
- HIGH8.1CVE-2023-43887Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function p…from 0, < 1.0.11-0+deb11u2
- HIGH7.8CVE-2022-47665Libde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int, int, int)from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb10u4
- HIGH7.8CVE-2023-25221Libde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in mo…from 0, < 1.0.11-0+deb11u1
- HIGH7.8CVE-2022-47655Libde265 1.0.9 is vulnerable to Buffer Overflow in function void put_qpel_fallback<unsigned short>from 0, < 1.0.11-0+deb11u1
- HIGH7.8CVE-2021-36409There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attac…from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u4
- MEDIUM6.5CVE-2024-38950Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to __interceptor_memcp…from 0
- MEDIUM6.5CVE-2024-38949Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 fun…from 0
- MEDIUM6.5CVE-2023-47471Buffer Overflow vulnerability in strukturag libde265 v1.10.12 allows a local attacker to cause a denial of service via the slice_segment_he…from 0, < 1.0.11-0+deb11u2
- from 0, < 1.0.11-0+deb10u5
- from 0, < 1.0.11-0+deb11u2
- MEDIUM6.5CVE-2023-24751libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43253Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_unweighted_pred_16_fallback in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43252Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_16_fallback in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43250Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_0_0_fallback_16 in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43249Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_hv_fallback<unsigned short> in fallback-motion.…from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43248Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_weighted_pred_avg_16_fallback in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43245Libde265 v1.0.8 was discovered to contain a segmentation violation via apply_sao_internal<unsigned short> in sao.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43244Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43243Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_weighted_pred_avg_8_sse in sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43242Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via mc_luma<unsigned char> in motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43241Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_v_3_8_sse in sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43240Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_qpel_h_2_v_1_sse in sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43239Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via mc_chroma<unsigned short> in motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43238Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_h_3_v_3_sse in sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43237Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void put_epel_hv_fallback<unsigned short> in fallback-m…from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43236Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2022-43235Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2021-35452An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21606libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallback function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21605libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21604libde265 v1.0.4 contains a heap buffer overflow fault in the _mm_loadl_epi64 function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21603libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21602libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback function, which can be exploited via a crafted a fil…from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21601libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21600libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_fallback function, which can be exploited via a crafted a f…from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21599libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- MEDIUM6.5CVE-2020-21597libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file.from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.3-1+deb10u3
- from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.3-1+deb10u1
- from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u1
- MEDIUM6.2CVE-2025-61147strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component decoder_context::compute_framedrop_table…from 0
- MEDIUM6.2CVE-2025-29482Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO (Sample Adaptive Offset) proc…from 0, < 1.0.7-1
- MEDIUM5.5CVE-2023-24758libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2023-24757libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2023-24756libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2023-24755libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_weighted_pred_8_fallback function at fallback-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2023-24754libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2023-24752libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_hevc_epel_pixels_8_sse function at sse-motion.cc.from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2021-36410A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265.from 0, < 1.0.11-0+deb11u1
- MEDIUM5.5CVE-2021-36408An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265.from 0, < 1.0.11-0+deb11u1
- from 0, < 1.0.11-0+deb11u4
- LOW3.3CVE-2023-51792Buffer Overflow vulnerability in libde265 v1.0.12 allows a local attacker to cause a denial of service via the allocation size exceeding th…from 0, < 1.0.11-0+deb11u4