CVE-2023-47471

Name of the Vulnerable Software and Affected Versions libde265 version 1.10.12

Description The issue is related to a buffer overflow vulnerability in the slice segment header function within the slice.cc component of the libde265 video codec implementation. This vulnerability can be exploited by a remote attacker to cause a denial of service due to unchecked input size during buffer copying.

Recommendations For libde265 version 1.10.12, consider disabling the slice segment header() function as a temporary workaround until a patch is available. Restrict access to the vulnerable slice.cc component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.