[SECURITY] [DLA 3240-1] libde265 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 3240-1] libde265 security update
From: Tobias Frost <tobi@debian.org>
Date: Thu, 15 Dec 2022 19:13:59 +0100
Message-id: <[🔎] Y5tj59Broy5mFMrZ@isildor.loewenhoehle.ip>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-------------------------------------------------------------------------
Debian LTS Advisory DLA-3240-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                         Tobias Frost
December 15, 2022                             https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package        : libde265
Version        : 1.0.3-1+deb10u1
CVE ID         : CVE-2020-21599 CVE-2021-35452 CVE-2021-36408 CVE-2021-36409
                 CVE-2021-36410 CVE-2021-36411
Debian Bug     : 1014977

Multiple issues were found in libde265, an open source implementation of the
h.265 video codec, which may result in denial of or have unspecified other
impact.


CVE-2020-21599

    libde265 v1.0.4 contains a heap buffer overflow in the
    de265_image::available_zscan function, which can be exploited via a crafted
    a file.

CVE-2021-35452

    An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to
    a SEGV in slice.cc.

CVE-2021-36408

    libde265 v1.0.8 contains a Heap-use-after-free in intrapred.h when decoding
    file using dec265.

CVE-2021-36409

    There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at
    sps.cc:925 in libde265 v1.0.8 when decoding file, which allows attackers to
    cause a Denial of Service (DoS) by running the application with a crafted
    file or possibly have unspecified other impact.

CVE-2021-36410

    A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in
    function put_epel_hv_fallback when running program dec265.

CVE-2021-36411

    An issue has been found in libde265 v1.0.8 due to incorrect access control.
    A SEGV caused by a READ memory access in function derive_boundaryStrength of
    deblock.cc has occurred. The vulnerability causes a segmentation fault and
    application crash, which leads to remote denial of service.

For Debian 10 buster, these problems have been fixed in version
1.0.3-1+deb10u1.

We recommend that you upgrade your libde265 packages.

For the detailed security status of libde265 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libde265

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: [SECURITY] [DLA 3239-2] git regression update
Next by Date: [SECURITY] [DLA 3241-1] firefox-esr security update
Previous by thread: [SECURITY] [DLA 3239-2] git regression update
Next by thread: [SECURITY] [DLA 3241-1] firefox-esr security update
Index(es):
- Date
- Thread