CVE-2022-24902: Memory issue in playing videos
First published: Thu May 05 2022(Updated: )
TkVideoplayer is a simple library to play video files in tkinter. Uncontrolled memory consumption in versions of TKVideoplayer prior to 2.0.0 can theoretically lead to performance degradation. There are no known workarounds. This issue has been patched and users are advised to upgrade to version 2.0.0 or later.
Credit: security-advisories@github.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Python Tkvideoplayer | <2.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-24902?
CVE-2022-24902 is a vulnerability in TkVideoplayer, a library to play video files in tkinter, that can lead to uncontrolled memory consumption and potential performance degradation.
What is the severity of CVE-2022-24902?
CVE-2022-24902 has a severity rating of 4.3 (medium).
How can CVE-2022-24902 impact my system?
CVE-2022-24902 can potentially lead to performance degradation due to uncontrolled memory consumption.
Are there any known workarounds for CVE-2022-24902?
There are no known workarounds for CVE-2022-24902.
How can I fix CVE-2022-24902?
To fix CVE-2022-24902, users are advised to upgrade to version 2.0.0 or later of TkVideoplayer.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/title
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/python
- canonical/python tkvideoplayer