Lucene search
K

14 matches found

CVE
CVE
added 2026/06/19 7:53 p.m.16 views

CVE-2026-49337

CVE-2026-49337 affects libde265 prior to 1.0.20. A crafted sequence of H.265 NAL units lets decoder_context::read_slice_NAL() attach slice headers to a finished picture object with no active image unit, causing attacker-controlled unbounded heap growth. The headers are retained until the picture ...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:1 p.m.7 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.7AI score0.00349EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/20 9:17 p.m.3 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.9AI score0.00349EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 9:17 p.m.7 views

UBUNTU-CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.7AI score0.00349EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 8:33 p.m.2 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.7AI score0.00349EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/20 8:33 p.m.3 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.7AI score0.00349EPSS
Exploits1References2
NVD
NVD
added 2026/02/20 1:15 a.m.5 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS0.0029EPSS
Exploits0References2
OSV
OSV
added 2026/02/19 8:25 p.m.2 views

UBUNTU-CVE-2026-26203

PJSIP is a free and open source multimedia communication library. Versions prior to 2.17 have a critical heap buffer underflow vulnerability in PJSIP's H.264 packetizer. The bug occurs when processing malformed H.264 bitstreams without NAL unit start codes, where the packetizer performs unchecked...

6.5CVSS6AI score0.00101EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/25 3:49 p.m.5 views

CVE-2025-21483

Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs...

9.8CVSS7.2AI score0.00402EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/24 3:33 p.m.4 views

CVE-2025-21483 Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity

Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs...

9.8CVSS6.7AI score0.00402EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/24 12:0 a.m.3 views

PT-2023-35610 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow write crash. Technical details about the crash include the functions isvcd start of pic, isvcd parse decod...

7AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/13 12:0 a.m.3 views

PT-2023-36008 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a null-dereference read crash. Technical details about the crash include the functions isvcd parse inter slice data cavlc enh lyr...

6.8AI score
Exploits0References2
OSV
OSV
added 2022/06/19 6:15 a.m.2 views

UBUNTU-CVE-2014-125019

A vulnerability, which was classified as problematic, was found in FFmpeg 2.0. This affects the function decodenalunit of the component Slice Segment Handler. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix thi...

5.5CVSS5AI score0.0063EPSS
Exploits0References4
exploitpack
exploitpack
added 2019/07/15 12:0 a.m.59 views

Android 7 - 9 VideoPlayer - ihevcd_parse_pps Out-of-Bounds Write

Android 7 - 9 VideoPlayer - ihevcdparsepps Out-of-Bounds Write CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can...

9.3CVSS0.2AI score0.08926EPSS
Exploits6
Rows per page
Query Builder