Your submission was sent successfully! Close

CVE-2022-1925

Published: 19 July 2022

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

Notes

AuthorNote
leosilva
same fix as CVE-2022-1922
Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
gst-plugins-good1.0
Launchpad, Ubuntu, Debian
bionic
Released (1.14.5-0ubuntu1~18.04.3)
focal
Released (1.16.3-0ubuntu1.1)
impish Ignored
(reached end-of-life)
jammy
Released (1.20.3-0ubuntu1)
trusty Ignored
(out of standard support)
upstream Needs triage

xenial
Released (1.8.3-1ubuntu0.5+esm1)
Patches:
upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/14d306da6da51a762c4dc701d161bb52ab66d774 (not CVE assigned but related)
usptream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/ad6012159acf18c6b5c0f4edf037e8c9a2dbc966