Описание
Ittiam libmpeg2 before 2022-07-27 uses memcpy with overlapping memory blocks in impeg2_mc_fullx_fully_8x8.
Отчет
This CVE is for Android's libmpeg2, which is a completely different code base than the old standalone library by the same name. Hence, libmpeg2 shipped in Red Hat offerings is not affected.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 9 | libmpeg2 | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2117463libmpeg2: memcpy-param-overlap in function impeg2_mc_fullx_fully_8x8
EPSS
Процентиль: 49%
0.00256
Низкий
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
nvd
больше 3 лет назад
Ittiam libmpeg2 before 2022-07-27 uses memcpy with overlapping memory blocks in impeg2_mc_fullx_fully_8x8.
CVSS3: 6.5
github
больше 3 лет назад
Ittiam libmpeg2 before 2022-07-27 uses memcpy with overlapping memory blocks in impeg2_mc_fullx_fully_8x8.
EPSS
Процентиль: 49%
0.00256
Низкий
6.5 Medium
CVSS3