[SECURITY] [DLA 3699-1] libde265 security update

[Thorsten Alteholz <debian@alteholz.de>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3699-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
December 30, 2023                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : libde265
Version        : 1.0.11-0+deb10u6
CVE ID         : CVE-2023-49465 CVE-2023-49467 CVE-2023-49468


Three issues have been found in libde265, an open H.265 video codec 
implementation. All issues are related to heap-buffer-overflow or global 
buffer overflow in different functions.


For Debian 10 buster, these problems have been fixed in version
1.0.11-0+deb10u6.

We recommend that you upgrade your libde265 packages.

For the detailed security status of libde265 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libde265

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=IKlN
-----END PGP SIGNATURE-----