{"id":"CVE-2023-43887","details":"Libde265 v1.0.12 was discovered to contain multiple buffer overflows via the num_tile_columns and num_tile_row parameters in the function pic_parameter_set::dump.","modified":"2026-05-18T05:56:45.189774993Z","published":"2023-11-22T00:00:00Z","database_specific":{"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/43xxx/CVE-2023-43887.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/43xxx/CVE-2023-43887.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-43887"},{"type":"REPORT","url":"https://github.com/strukturag/libde265/issues/418"},{"type":"FIX","url":"https://github.com/strukturag/libde265/commit/63b596c915977f038eafd7647d1db25488a8c133"},{"type":"ARTICLE","url":"https://lists.debian.org/debian-lts-announce/2023/11/msg00032.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/strukturag/libde265","events":[{"introduced":"0"},{"last_affected":"a267c84707ab264928fa9b86de2ee749c48c318c"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"1.0.12"}],"source":"CPE_FIELD","cpe":"cpe:2.3:a:struktur:libde265:1.0.12:*:*:*:*:*:*:*"}}],"versions":["v1.0.12","v1.0.11","v1.0.10","v1.0.9","v1.0.8","v1.0.7","v1.0.6","v1.0.5","v1.0.4","v1.0.3","v1.0.0","v0.5","v0.4","v0.3","v0.2","v0.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-43887.json"}}],"schema_version":"1.7.5"}