Integer Underflow Vulnerability in pixel-a.asm in MulticoreWare x265 through 2.5

Integer Underflow Vulnerability in pixel-a.asm in MulticoreWare x265 through 2.5

CVE-2017-13666 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can cause an integer underflow, which leads to a crash. This is a different vulnerability than CVE-2017-8906.

Learn more about our Web Application Penetration Testing UK.