CVE-2024-38949

Опубликовано: 26 июн. 2024

Источник: debian

EPSS Низкий

Описание

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 function at sdl.cc

Пакеты

Пакет	Статус	Релиз	Тип
libde265	unfixed		package
libde265	postponed	trixie	package
libde265	postponed	bookworm	package
libde265	no-dsa	bullseye	package

Примечания

https://github.com/strukturag/libde265/issues/460

EPSS

Процентиль: 28%

0.00101

Низкий

Связанные уязвимости

CVE-2024-38949

CVSS3: 6.5

ubuntu

больше 1 года назад

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 function at sdl.cc

CVE-2024-38949

CVSS3: 6.5

nvd

больше 1 года назад

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 function at sdl.cc

GHSA-w54f-vq4c-7637

CVSS3: 6.5

github

больше 1 года назад

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 function at sdl.cc

EPSS

Процентиль: 28%

0.00101

Низкий