CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in `de265_image_get_buffer()` (`libde265/image.cc:128`). The overflow wraps the plane allocation size to a small value (~1 KB), but the subsequent `fill_image()` call computes the real size using `size_t`, writing ~4 GB into the undersized heap buffer. Version 1.1.0 patches the issue.
Configurations

Configuration 1 (hide)

cpe:2.3:a:struktur:libde265:*:*:*:*:*:*:*:*

History

26 Jun 2026, 19:17

Type Values Removed Values Added
CPE cpe:2.3:a:struktur:libde265:*:*:*:*:*:*:*:*
First Time Struktur
Struktur libde265
References () https://github.com/strukturag/libde265/commit/8a1b5cf212f78e1c77cb46eb5d56e492a9336eb8 - () https://github.com/strukturag/libde265/commit/8a1b5cf212f78e1c77cb46eb5d56e492a9336eb8 - Patch
References () https://github.com/strukturag/libde265/security/advisories/GHSA-vv8h-932h-7r86 - () https://github.com/strukturag/libde265/security/advisories/GHSA-vv8h-932h-7r86 - Exploit, Vendor Advisory

22 Jun 2026, 16:16

Type Values Removed Values Added
References () https://github.com/strukturag/libde265/security/advisories/GHSA-vv8h-932h-7r86 - () https://github.com/strukturag/libde265/security/advisories/GHSA-vv8h-932h-7r86 -

19 Jun 2026, 21:17

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-19 21:17

Updated : 2026-06-26 19:17


NVD link : CVE-2026-49346

Mitre link : CVE-2026-49346

CVE.ORG link : CVE-2026-49346


JSON object : View

Products Affected

struktur

  • libde265
CWE
CWE-190

Integer Overflow or Wraparound