Search CVE reports
21 – 23 of 23 results
Some fixes available 18 of 22
Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read.
2 affected packages
gst-plugins-bad1.0, gst-plugins-bad0.10
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad1.0 | Fixed | Fixed | Fixed | Fixed |
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release |
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated...
2 affected packages
gst-plugins-bad1.0, gst-plugins-bad0.10
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad1.0 | — | — | — | — |
| gst-plugins-bad0.10 | — | — | — | — |
Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.
2 affected packages
gst-plugins-bad1.0, gst-plugins-bad0.10
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad1.0 | — | — | — | — |
| gst-plugins-bad0.10 | — | — | — | — |