Your submission was sent successfully! Close

CVE-2021-3522

Published: 24 April 2021

GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
gst-plugins-base1.0
Launchpad, Ubuntu, Debian
bionic
Released (1.14.5-0ubuntu1~18.04.3)
focal
Released (1.16.2-4ubuntu0.1)
groovy
Released (1.18.0-2ubuntu0.1)
hirsute
Released (1.18.4-1)
impish Not vulnerable
(1.18.4-2)
jammy Not vulnerable
(1.18.4-2)
precise Does not exist

trusty Does not exist

upstream
Released (1.18.4-2)
xenial
Released (1.8.3-1ubuntu0.3+esm1)