CVE-2024-47776

Publication date 12 December 2024

Last updated 12 December 2024

Ubuntu priority

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in gst_wavparse_cue_chunk within gstwavparse.c. The vulnerability happens due to a discrepancy between the size of the data buffer and the size value provided to the function. This mismatch causes the comparison if (size < 4 + ncues * 24) to fail in some cases, allowing the subsequent loop to access beyond the bounds of the data buffer. The root cause of this discrepancy stems from a miscalculation when clipping the chunk size based on upstream data size. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
gst-plugins-good0.10	24.10 oracular	Not in release
	24.04 LTS noble	Not in release
	22.04 LTS jammy	Not in release
	20.04 LTS focal	Not in release
	16.04 LTS xenial	Needs evaluation
gst-plugins-good1.0	24.10 oracular	Needs evaluation
	24.04 LTS noble	Needs evaluation
	22.04 LTS jammy	Needs evaluation
	20.04 LTS focal	Needs evaluation
	18.04 LTS bionic	Needs evaluation
	16.04 LTS xenial	Needs evaluation

Notes

mdeslaur

same commits as listed in CVE-2024-47775

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
gst-plugins-good1.0	Upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042.patch Upstream: c627f3a Upstream: f5fa594 Upstream: 8911020 Upstream: 8f04506 Upstream: 3d2a584 Upstream: 34cfd6b Upstream: ba8476d

CVE-2024-47776

Status

Notes

mdeslaur

Patch details

References

Other references