An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can cause an integer underflow, which leads to a crash. This is a different vulnerability than CVE-2017-8906.
References
Link | Resource |
---|---|
https://bitbucket.org/multicoreware/x265/issues/364/integer-overflow-and-affect-top-level | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-08-23 23:29
Updated : 2017-09-07 11:30
NVD link : CVE-2017-13666
Mitre link : CVE-2017-13666
JSON object : View
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)
Products Affected
multicorewareinc
- x265