Published: 16/09/2021 Updated: 11/02/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
struktur libde265 1.0.4

libde265 v104 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file ...

Debian Bug report logs - #1029396 libde265: CVE-2020-21594 Package: src:libde265; Maintainer for src:libde265 is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 15 Jul 2022 22:36:02 UTC Severity: important Tags: security, upstream Fixed ...

Debian Bug report logs - #1014999 libde265: CVE-2020-21594 CVE-2020-21595 CVE-2020-21596 CVE-2020-21597 CVE-2020-21599 CVE-2020-21601 CVE-2020-21603 CVE-2020-21604 CVE-2020-21605 CVE-2020-21606 Package: src:libde265; Maintainer for src:libde265 is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by ...

Debian Bug report logs - #1029397 libde265: CVE-2020-21596 Package: src:libde265; Maintainer for src:libde265 is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 15 Jul 2022 22:36:02 UTC Severity: important Tags: security, upstream R ...

Multiple security issues were discovered in libde265, an implementation of the H265 video codec which may result in denial of service and potentially the execution of arbitrary code if a malformed media file is processed For the stable distribution (bullseye), these problems have been fixed in version 1011-0+deb11u1 We recommend that you upgra ...

CVE-2020-21603 Exploit libde265 v104 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file Windows Binary PoC /CVE-2020-21603exe will run the exploit /CVE-2020-21603exe -t Target IP /CVE-2020-21603exe -t wwwexamplecom Running the exploit on Linux Change the target

CVE-2020-21603 libde265 v104 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file authentication complexity vector NONE MEDIUM NETWORK confidentiality integrity availability NONE NONE PARTIAL CVSS Score: 43 References strukturag/libde265#240 Brut File CVE-2020-21603json About this repo

CVE-2020-21603 Exploit libde265 v104 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file Windows Binary PoC /CVE-2020-21603exe will run the exploit /CVE-2020-21603exe -t Target IP /CVE-2020-21603exe -t wwwexamplecom Running the exploit on Linux Change the target

CWE-787 https://github.com/strukturag/libde265/issues/240 https://www.debian.org/security/2023/dsa-5346 https://github.com/AIPOCAI/CVE-2020-21603 https://nvd.nist.gov https://security.archlinux.org/CVE-2020-21603 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029396 https://www.debian.org/security/2023/dsa-5346

CVE-2020-21603

Vulnerability Summary

Most Upvoted Vulmon Research Post

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect