vulnerability

FreeBSD: VID-421c0af9-b206-11ed-9fe5-f4a47516fb57 (CVE-2022-43249): libde256 -- multiple vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:C)

Published

Feb 21, 2023

Added

Feb 23, 2023

Modified

Jun 15, 2026

Description

Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_hv_fallbackless thanunsigned shortgreater than in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

Solution

freebsd-upgrade-package-libde265

References

CVE-2022-43249
https://attackerkb.com/topics/CVE-2022-43249
CWE-787
EUVD-EUVD-2022-46293
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-46293

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report