Search CVE reports
11 – 20 of 23 results
Some fixes available 6 of 7
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-bad1.0 | Fixed | Fixed | Not affected | Not affected |
Some fixes available 4 of 6
GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-bad1.0 | Not affected | Fixed | Fixed | Vulnerable |
Some fixes available 4 of 8
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-bad1.0 | Not affected | Fixed | Fixed | Vulnerable |
Some fixes available 4 of 8
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-bad1.0 | Not affected | Fixed | Fixed | Vulnerable |
Some fixes available 3 of 7
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored |
| gst-plugins-bad1.0 | Not affected | Fixed | Fixed | Vulnerable |
A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.
1 affected package
gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad1.0 | Not affected | Not affected | Not affected | Vulnerable |
Some fixes available 1 of 7
The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release |
| gst-plugins-bad1.0 | Not affected | Not affected | Not affected | Not affected |
Some fixes available 1 of 5
Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release |
| gst-plugins-bad1.0 | Not affected | Not affected | Not affected | Not affected |
Some fixes available 17 of 20
The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
2 affected packages
gst-plugins-bad1.0, gst-plugins-bad0.10
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad1.0 | Fixed | Fixed | Fixed | Fixed |
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release |
Some fixes available 17 of 20
The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section.
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release |
| gst-plugins-bad1.0 | Fixed | Fixed | Fixed | Fixed |