CVE-2020-21602

描述

libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback function, which can be exploited via a crafted a file.

受影響套件(2)

• Alpine/libde265from 0, < 1.0.11-r0
• Debian/libde265from 0, < 1.0.11-0+deb11u1

CVSS 分數

參考連結(2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2020-21602
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-21602