CVE-2026-33164

UNKNOWN 0.0

NULL Pointer Dereference in libde265

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

13th

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in pic_parameter_set::set_derived_values(). This issue has been patched in version 1.0.17.

CWE	CWE-122
Vendor	strukturag
Product	libde265
Published	Mar 20, 2026
Last Updated	Mar 23, 2026

Stay Ahead of the Next One

Get instant alerts for strukturag libde265

Be the first to know when new unknown vulnerabilities affecting strukturag libde265 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

strukturag / libde265

< 1.0.17

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/strukturag/libde265/security/advisories/GHSA-wqrf-6rf5-v78r github.com: https://github.com/strukturag/libde265/releases/tag/v1.0.17