Search CVE reports
21 – 30 of 40 results
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | — |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Needs evaluation |
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
4 affected packages
gst-plugins-good0.10, gst-plugins-good1.0, gst-plugins-base0.10, gst-plugins-base1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-good1.0 | Not affected | Not affected | Fixed | Fixed | Ignored |
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-base1.0 | Not affected | Not affected | Fixed | Fixed | Fixed |
The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a ncdt sub-tag that "goes...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |
The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving ncdt tags.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |
The qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving the current stts index.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |
The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |
The gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted audio file.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...
2 affected packages
gst-plugins-good1.0, gst-plugins-good0.10
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | — | — | — | — |
| gst-plugins-good0.10 | — | — | — | — | — |
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| gst-plugins-good1.0 | — | — | — | — | — |