Search CVE reports
21 – 30 of 40 results
CVE-2024-47539
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2024-47537
Medium priorityGStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2023-37327
Medium prioritySome fixes available 6 of 12
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
4 affected packages
gst-plugins-base0.10, gst-plugins-base1.0, gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Ignored | Needs evaluation |
| gst-plugins-base1.0 | Not affected | Fixed | Fixed | Needs evaluation | Needs evaluation |
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Ignored | Needs evaluation |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Needs evaluation | Needs evaluation |
CVE-2017-5845
Low priorityThe gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a ncdt sub-tag that "goes...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Not affected |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2017-5841
Low priorityThe gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving ncdt tags.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Not affected |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2017-5840
Low priorityThe qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving the current stts index.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Fixed |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2016-10199
Low priorityThe qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Fixed |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2016-10198
Low priorityThe gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted audio file.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Fixed |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2016-9636
Medium priorityHeap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Fixed |
| gst-plugins-good1.0 | — | — | — | — | Fixed |
CVE-2016-9635
Medium priorityHeap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | Fixed |
| gst-plugins-good1.0 | — | — | — | — | Fixed |