Lucene search
K

8 matches found

OSV
OSV
added 2026/06/19 9:17 p.m.12 views

DEBIAN-CVE-2026-49337

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/19 7:53 p.m.6 views

CVE-2026-49337

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0
CVE
CVE
added 2026/06/19 7:53 p.m.19 views

CVE-2026-49337

CVE-2026-49337 affects libde265 prior to 1.0.20. A crafted sequence of H.265 NAL units lets decoder_context::read_slice_NAL() attach slice headers to a finished picture object with no active image unit, causing attacker-controlled unbounded heap growth. The headers are retained until the picture ...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.13 views

PT-2026-51027

Name of the Vulnerable Software and Affected Versions libde265 versions prior to 1.0.20 Description An issue in the h.265 video codec implementation allows a crafted sequence of H.265 NAL units to cause the decoder context::read slice NAL function to attach slice headers to a finished picture...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References16
OSV
OSV
added 2025/07/28 7:12 p.m.7 views

CLSA-2025-1753729945 gstreamer1-plugins-bad-free: Fix of CVE-2025-3887

CVE-2025-3887: fix H265 slice header parsing to validate numlongtermpics and prevent stack overflow...

8.8CVSS7.3AI score0.00734EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/06/12 6:10 a.m.4 views

gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

A flaw was found in GStreamer H265 Codec Parsing gstreamer1-plugins-bad-free. This vulnerability allows remote attackers to execute arbitrary code by parsing H265 slice headers...

8.8CVSS6.2AI score0.00734EPSS
Exploits0References5
OSV
OSV
added 2025/05/22 1:15 a.m.7 views

UBUNTU-CVE-2025-3887

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

8.8CVSS7.8AI score0.00734EPSS
Exploits0References10
Zero Day Initiative
Zero Day Initiative
added 2025/04/30 12:0 a.m.15 views

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of H265 sli...

8.8CVSS7.2AI score0.00734EPSS
Exploits0References1
Rows per page
Query Builder