Search CVE reports
11 – 20 of 22 results
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability has been identified in the gst_ssa_parse_remove_override_codes function of the gstssaparse.c file. This function is...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A stack-buffer overflow has been detected in the `vorbis_handle_identification_packet` function within `gstvorbisdec.c`. The position array is a...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 3 of 6
GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-base1.0 | Not affected | Fixed | Fixed | Needs evaluation |
Some fixes available 6 of 12
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
4 affected packages
gst-plugins-good0.10, gst-plugins-good1.0, gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Needs evaluation |
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-base1.0 | Not affected | Fixed | Fixed | Needs evaluation |
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
1 affected package
gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base1.0 | — | Not affected | Fixed | Fixed |
GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | Not in release |
| gst-plugins-base1.0 | — | — | — | Fixed |
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — |
| gst-plugins-base1.0 | — | — | — | — |
The html_context_handle_element function in gst/subparse/samiparse.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted SMI file, as demonstrated...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — |
| gst-plugins-base1.0 | — | — | — | — |
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service (stack overflow...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — |
| gst-plugins-base1.0 | — | — | — | — |