Search CVE reports
1 – 10 of 22 results
In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
35 affected packages
gst-libav1.0, gst-plugins-bad1.0, gst-plugins-bad1.0-contrib, gst-plugins-base1.0, gst-plugins-good1.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-libav1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0-contrib | Needs evaluation | Needs evaluation | — | — |
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-ugly1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-python1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-rtsp-server1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-editing-services1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-vaapi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| qt-gstreamer | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rust-gst-plugin-version-helper | Needs evaluation | Not in release | — | — |
| rust-gstreamer | Needs evaluation | Not in release | — | — |
| rust-gstreamer-allocators | Not in release | Not in release | — | — |
| rust-gstreamer-allocators-sys | Not in release | Not in release | — | — |
| rust-gstreamer-audio | Needs evaluation | Not in release | — | — |
| rust-gstreamer-audio-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-base | Needs evaluation | Not in release | — | — |
| rust-gstreamer-base-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-gl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11 | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-video | Needs evaluation | Not in release | — | — |
| rust-gstreamer-video-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
In GStreamer through 1.26.1, the subparse plugin's subrip_unescape_formatting function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
35 affected packages
gst-libav1.0, gst-plugins-bad1.0, gst-plugins-bad1.0-contrib, gst-plugins-base1.0, gst-plugins-good1.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-libav1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0-contrib | Needs evaluation | Needs evaluation | — | — |
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-ugly1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-python1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-rtsp-server1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-editing-services1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-vaapi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| qt-gstreamer | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rust-gst-plugin-version-helper | Needs evaluation | Not in release | — | — |
| rust-gstreamer | Needs evaluation | Not in release | — | — |
| rust-gstreamer-allocators | Not in release | Not in release | — | — |
| rust-gstreamer-allocators-sys | Not in release | Not in release | — | — |
| rust-gstreamer-audio | Needs evaluation | Not in release | — | — |
| rust-gstreamer-audio-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-base | Needs evaluation | Not in release | — | — |
| rust-gstreamer-base-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-gl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11 | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-video | Needs evaluation | Not in release | — | — |
| rust-gstreamer-video-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
35 affected packages
gst-libav1.0, gst-plugins-bad1.0, gst-plugins-bad1.0-contrib, gst-plugins-base1.0, gst-plugins-good1.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-libav1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0-contrib | Needs evaluation | Needs evaluation | — | — |
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-ugly1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-python1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-rtsp-server1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-editing-services1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-vaapi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| qt-gstreamer | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rust-gst-plugin-version-helper | Needs evaluation | Not in release | — | — |
| rust-gstreamer | Needs evaluation | Not in release | — | — |
| rust-gstreamer-allocators | Not in release | Not in release | — | — |
| rust-gstreamer-allocators-sys | Not in release | Not in release | — | — |
| rust-gstreamer-audio | Needs evaluation | Not in release | — | — |
| rust-gstreamer-audio-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-base | Needs evaluation | Not in release | — | — |
| rust-gstreamer-base-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-gl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11 | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-video | Needs evaluation | Not in release | — | — |
| rust-gstreamer-video-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
35 affected packages
gst-libav1.0, gst-plugins-bad1.0, gst-plugins-bad1.0-contrib, gst-plugins-base1.0, gst-plugins-good1.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-libav1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0-contrib | Needs evaluation | Needs evaluation | — | — |
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-ugly1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-python1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-rtsp-server1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-editing-services1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-vaapi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| qt-gstreamer | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rust-gst-plugin-version-helper | Needs evaluation | Not in release | — | — |
| rust-gstreamer | Needs evaluation | Not in release | — | — |
| rust-gstreamer-allocators | Not in release | Not in release | — | — |
| rust-gstreamer-allocators-sys | Not in release | Not in release | — | — |
| rust-gstreamer-audio | Needs evaluation | Not in release | — | — |
| rust-gstreamer-audio-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-base | Needs evaluation | Not in release | — | — |
| rust-gstreamer-base-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-gl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11 | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-video | Needs evaluation | Not in release | — | — |
| rust-gstreamer-video-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.
35 affected packages
gst-libav1.0, gst-plugins-bad1.0, gst-plugins-bad1.0-contrib, gst-plugins-base1.0, gst-plugins-good1.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-libav1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-bad1.0-contrib | Needs evaluation | Needs evaluation | — | — |
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-good1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-plugins-ugly1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-python1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gst-rtsp-server1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-editing-services1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer-vaapi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| gstreamer1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| qt-gstreamer | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rust-gst-plugin-version-helper | Needs evaluation | Not in release | — | — |
| rust-gstreamer | Needs evaluation | Not in release | — | — |
| rust-gstreamer-allocators | Not in release | Not in release | — | — |
| rust-gstreamer-allocators-sys | Not in release | Not in release | — | — |
| rust-gstreamer-audio | Needs evaluation | Not in release | — | — |
| rust-gstreamer-audio-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-base | Needs evaluation | Not in release | — | — |
| rust-gstreamer-base-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-gl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-egl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-wayland-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11 | Needs evaluation | Not in release | — | — |
| rust-gstreamer-gl-x11-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils | Needs evaluation | Not in release | — | — |
| rust-gstreamer-pbutils-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play | Needs evaluation | Not in release | — | — |
| rust-gstreamer-play-sys | Needs evaluation | Not in release | — | — |
| rust-gstreamer-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
| rust-gstreamer-video | Needs evaluation | Not in release | — | — |
| rust-gstreamer-video-sys | Needs evaluation | Needs evaluation | Needs evaluation | — |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been detected in the parse_lrc function within gstsubparse.c. The parse_lrc function calls strchr() to find...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function gst_parse_vorbis_setup_packet within vorbis_parse.c. The integer size is read from the input file without...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the format_channel_mask function in gst-discoverer.c. The vulnerability affects the local array position,...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2_read_synch_uint function, located in id3v2.c. If id3v2_read_synch_uint is called with a null...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |