Format: 1.8
Date: Fri, 01 Mar 2024 10:51:23 +0100
Source: libde265
Binary: libde265-0 libde265-dev libde265-examples
Built-For-Profiles: noudeb
Architecture: riscv64
Version: 1.0.8-1ubuntu0.3
Distribution: jammy
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos03-riscv64-030.buildd>
Changed-By: Fabian Toepfer <fabian.toepfer@canonical.com>
Description:
 libde265-0 - Open H.265 video codec implementation
 libde265-dev - Open H.265 video codec implementation - development files
 libde265-examples - Open H.265 video codec implementation - examples
Changes:
 libde265 (1.0.8-1ubuntu0.3) jammy-security; urgency=medium
 .
   * SECURITY UPDATE: denial-of-service
     - debian/patches/CVE-2023-27102.patch: check whether referenced
       PPS exists.
     - CVE-2023-27102
   * SECURITY UPDATE: heap-buffer-overflow
     - debian/patches/CVE-2023-27103.patch: check for valid slice
       header index access.
     - CVE-2023-27103
   * SECURITY UPDATE: buffer overflow
     - debian/patches/CVE-2023-43887.patch: fix buffer overflow via the
       num_tile_columns and num_tile_row parameters in the function
       pic_parameter_set::dump.
     - CVE-2023-43887
   * SECURITY UPDATE: buffer overflow
     - debian/patches/CVE-2023-47471.patch: check for null-pointer in
       functon slice_segment_header::dump_slice_segment_header.
     - CVE-2023-47471
   * SECURITY UPDATE: heap-buffer-overflow
     - debian/patches/CVE-2023-49465.patch: fix buffer overflow via the
       derive_spatial_luma_vector_prediction function.
     - CVE-2023-49465
   * SECURITY UPDATE: heap-buffer-overflow
     - debian/patches/CVE-2023-49467.patch: prevent endless loop in
       decode_ref_idx_lX function when numRefIdxLXActive is invalid.
     - CVE-2023-49467
   * SECURITY UPDATE: buffer overflow
     - debian/patches/CVE-2023-49468.patch: sanitize values if IPM is
       uninitialized in get_IntraPredMode function.
     - CVE-2023-49468
Checksums-Sha1:
 6c3ec941d75a5b47c449dd59916ebb99ca1b132b 2494784 libde265-0-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 206a06e88e4847cf4f290c7973d7a833000ab2fe 286356 libde265-0_1.0.8-1ubuntu0.3_riscv64.deb
 5c8f8742a11dffda902e01f005ce8bcb30af4d5c 12298 libde265-dev_1.0.8-1ubuntu0.3_riscv64.deb
 1aae245bcfb985ebcb77493ffad6a7e1c504f4e7 952196 libde265-examples-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 e25937fc130f5618abf349725338d151fb84972e 23490 libde265-examples_1.0.8-1ubuntu0.3_riscv64.deb
 480ad4dfa67b2580baccfc9b5328fd0b2d81fe5e 12766 libde265_1.0.8-1ubuntu0.3_riscv64.buildinfo
Checksums-Sha256:
 06eceec60cc85e4c5817ed3c14a1f20cc3763b5c9a0d10ba1aa331e1738921bd 2494784 libde265-0-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 bf633bb9565d885abde9cf9b519949f766ccd15dd3af078f31f8ab34e160fbab 286356 libde265-0_1.0.8-1ubuntu0.3_riscv64.deb
 10427d92f396e36c862cc3a0a8bab13592cd950b1722e13397b7f4ca16689790 12298 libde265-dev_1.0.8-1ubuntu0.3_riscv64.deb
 5d4951bae17f0e0d5f097371a89742c6711aebe69e56f60decc3f42d930acf80 952196 libde265-examples-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 dfd4c8ae5d9a8a9d4e4d938443f9f12f3400061a44cf39f0f9b2407b4e636491 23490 libde265-examples_1.0.8-1ubuntu0.3_riscv64.deb
 e005ca0ed6f0f7bf919dfa90fdc3465dcbdb3f17a80ccae634b755536742b79c 12766 libde265_1.0.8-1ubuntu0.3_riscv64.buildinfo
Files:
 da039cf1cae71c3e564f8aac3b9c72fa 2494784 debug optional libde265-0-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 81f0c3ea99665321bebf2560b800f117 286356 libs optional libde265-0_1.0.8-1ubuntu0.3_riscv64.deb
 917a7ffb21e39a062f2ff4c8a9d8b9ff 12298 libdevel optional libde265-dev_1.0.8-1ubuntu0.3_riscv64.deb
 3904c4f99db38c7ace10abf38dc7d179 952196 debug optional libde265-examples-dbgsym_1.0.8-1ubuntu0.3_riscv64.ddeb
 facd5340ed56646dc13b4e54261656e6 23490 video optional libde265-examples_1.0.8-1ubuntu0.3_riscv64.deb
 e24c3128e4036e42502d33f8ce17a236 12766 libs optional libde265_1.0.8-1ubuntu0.3_riscv64.buildinfo
Original-Maintainer: Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>