Struktur
Products by Struktur Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2024 there have been 0 vulnerabilities in Struktur . Last year Struktur had 24 security vulnerabilities published. Right now, Struktur is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 24 | 7.35 |
2022 | 22 | 6.57 |
2021 | 16 | 7.03 |
2020 | 0 | 0.00 |
2019 | 1 | 8.80 |
2018 | 0 | 0.00 |
It may take a day or so for new Struktur vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Struktur Security Vulnerabilities
libheif v1.17.5 was discovered to contain a segmentation violation
CVE-2023-49464
8.8 - High
- December 07, 2023
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::get_luma_bits_per_pixel_from_configuration_unci.
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc.
CVE-2023-49465
8.8 - High
- December 07, 2023
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc.
Memory Corruption
libheif v1.17.5 was discovered to contain a segmentation violation
CVE-2023-49460
8.8 - High
- December 07, 2023
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::decode_uncompressed_image.
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_
CVE-2023-49467
8.8 - High
- December 07, 2023
Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates function at motion.cc.
Memory Corruption
Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.
CVE-2023-49468
8.8 - High
- December 07, 2023
Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.
Memory Corruption
libheif v1.17.5 was discovered to contain a segmentation violation
CVE-2023-49463
8.8 - High
- December 07, 2023
libheif v1.17.5 was discovered to contain a segmentation violation via the function find_exif_tag at /libheif/exif.cc.
libheif v1.17.5 was discovered to contain a segmentation violation
CVE-2023-49462
8.8 - High
- December 07, 2023
libheif v1.17.5 was discovered to contain a segmentation violation via the component /libheif/exif.cc.
Libde265 v1.0.12 was discovered to contain multiple buffer overflows
CVE-2023-43887
8.1 - High
- November 22, 2023
Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function pic_parameter_set::dump.
Classic Buffer Overflow
Buffer Overflow vulnerability in strukturag libde265 v1.10.12
CVE-2023-47471
6.5 - Medium
- November 16, 2023
Buffer Overflow vulnerability in strukturag libde265 v1.10.12 allows a local attacker to cause a denial of service via the slice_segment_header function in the slice.cc component.
Classic Buffer Overflow
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images
CVE-2023-29659
6.5 - Medium
- May 05, 2023
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.
Divide By Zero
Libde265 v1.0.11 was discovered to contain a heap buffer overflow
CVE-2023-27103
8.8 - High
- March 15, 2023
Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc.
Memory Corruption
Libde265 v1.0.11 was discovered to contain a segmentation violation
CVE-2023-27102
6.5 - Medium
- March 15, 2023
Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decoder_context::process_slice_segment_header at decctx.cc.
NULL Pointer Dereference
Libde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse
CVE-2022-47664
7.8 - High
- March 03, 2023
Libde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse
Classic Buffer Overflow
Libde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int
CVE-2022-47665
7.8 - High
- March 03, 2023
Libde265 1.0.9 has a heap buffer overflow vulnerability in de265_image::set_SliceAddrRS(int, int, int)
Memory Corruption
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc
CVE-2023-24751
6.5 - Medium
- March 01, 2023
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the mc_chroma function at motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
NULL Pointer Dereference
Libde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in motion.cc.
CVE-2023-25221
7.8 - High
- March 01, 2023
Libde265 v1.0.10 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function in motion.cc.
Memory Corruption
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc
CVE-2023-24758
5.5 - Medium
- March 01, 2023
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
NULL Pointer Dereference
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc
CVE-2023-24757
5.5 - Medium
- March 01, 2023
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the put_unweighted_pred_16_fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
NULL Pointer Dereference
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc
CVE-2023-24756
5.5 - Medium
- March 01, 2023
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
NULL Pointer Dereference
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc
CVE-2023-24754
5.5 - Medium
- March 01, 2023
libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_weighted_pred_avg_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
NULL Pointer Dereference