Moderate severityNVD Advisory· Published May 5, 2022· Updated Apr 23, 2025

Memory issue in playing videos

CVE-2022-24902

Description

TkVideoplayer is a simple library to play video files in tkinter. Uncontrolled memory consumption in versions of TKVideoplayer prior to 2.0.0 can theoretically lead to performance degradation. There are no known workarounds. This issue has been patched and users are advised to upgrade to version 2.0.0 or later.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
tkvideoplayerPyPI	< 2.0.0	2.0.0

Affected products

ghsa-coords
pkg:pypi/tkvideoplayer
Range: < 2.0.0
Paulledemon/Tkvideoplayerv5
Range: < 2.0.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-jmhj-vh4q-hhmqghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2022-24902ghsaADVISORY
github.com/PaulleDemon/tkVideoPlayer/issuesghsaPACKAGE
github.com/PaulleDemon/tkVideoPlayer/issues/3ghsax_refsource_MISCWEB
github.com/PaulleDemon/tkVideoPlayer/security/advisories/GHSA-jmhj-vh4q-hhmqghsax_refsource_CONFIRMWEB
github.com/pypa/advisory-database/tree/main/vulns/tkvideoplayer/PYSEC-2022-187.yamlghsaWEB

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000