EPSS
Percentile
21.8%
libde265.so is vulnerable to Denial Of Service (DoS). The vulnerability is due to a null pointer dereference in theput_weighted_pred_avg_ function of motion.cc, which allows an attacker to cause an application crash by parsing a crafted file.
put_weighted_pred_avg_
motion.cc
github.com/advisories/GHSA-54w2-5h8j-5vmm
github.com/strukturag/libde265/commit/bfb6de155f9fb015d2904cb4ef07809f17995276
github.com/strukturag/libde265/issues/381
github.com/strukturag/libde265/issues/383
lists.debian.org/debian-lts-announce/2023/03/msg00004.html