Package: libde265 Version: 1.0.11-1+deb12u2 (bookworm) / 1.0.15-1 (trixie) The libde265 package appears to be affected by CVE-2026-33164.
A malformed H.265 PPS NAL unit can trigger a segmentation fault in pic_parameter_set::set_derived_values(), resulting in denial of service. This issue has been fixed upstream in version 1.0.17. Reference: https://security-tracker.debian.org/tracker/CVE-2026-33164 System details: Debian bookworm and trixie libde265 versions: 1.0.11-1+deb12u2 / 1.0.15-1 Please confirm: * Whether a fix is planned for Debian * Availability of patched versions Thanks & Regards, Ayush Prasad Software Prod & Plat Eng Team Lead APP Life Sciences – Product Engineering Advanced Technology Centres India (ATCI) Mobile +91 9123774187<tel:+919123774187> [Image] ________________________________ This message is for the designated recipient only and may contain privileged, proprietary, or otherwise confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the e-mail by you is prohibited. Where allowed by local law, electronic communications with Accenture and its affiliates, including e-mail and instant messaging (including content), may be scanned by our systems for the purposes of information security, AI-powered support capabilities, and assessment of internal compliance with Accenture policy. Your privacy is important to us. Accenture uses your personal data only in compliance with data protection laws. For further information on how Accenture processes your personal data, please see our privacy statement at https://www.accenture.com/us-en/privacy-policy. ______________________________________________________________________________________ www.accenture.com
