PT-2022-13752 · Libde265+3 · Libde265+3

Published

2022-04-06

Updated

2024-02-08

CVE-2022-1253

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libde265 versions prior to 1.0.11

Description A Heap-based Buffer Overflow issue has been identified in the libde265 library. The issue is related to a buffer overflow, which can be exploited. The fix for this issue is established in a specific commit, but it has not been included in an official release yet.

Recommendations For versions prior to 1.0.11, update to version 1.0.11 to fix the security issues.

Exploit

Fix

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-122

Related Identifiers

ALT-PU-2022-3124

ALT-PU-2023-2045

ALT-PU-2023-2046

ALT-PU-2023-5125

CVE-2022-1253

DSA-5346-1

MGASA-2023-0093

USN-6627-1

Affected Products

Alt Linux

Linuxmint

Ubuntu

Libde265

PT-2022-13752 · Libde265+3 · Libde265+3

CVE-2022-1253

Weakness Enumeration

Related Identifiers

Affected Products

References · 43