Search CVE reports
21 – 30 of 47 results
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in qtdemux_parse_trak function within qtdemux.c. During the strf parsing case, the subtraction size -= 40 can lead...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. The function qtdemux_parse_sbgp in qtdemux.c is affected by a null dereference vulnerability. This vulnerability is fixed in 1.24.10.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size <...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
4 affected packages
gst-plugins-good0.10, gst-plugins-good1.0, gst-plugins-base0.10, gst-plugins-base1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-good1.0 | Not affected | Not affected | Fixed | Fixed | Ignored |
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-base1.0 | Not affected | Not affected | Fixed | Fixed | Fixed |
Some fixes available 4 of 17
DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on...
2 affected packages
gst-plugins-good1.0, openjfx
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | Not affected | Not affected | Fixed | Fixed | Fixed |
| openjfx | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Some fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in...
1 affected package
gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | — | Fixed | Fixed | Fixed |
Some fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in matroskademux element in lzo decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS....
1 affected package
gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | — | Fixed | Fixed | Fixed |