Search CVE reports


Toggle filters

1 – 10 of 16 results


CVE-2024-0444

Medium priority
Vulnerable

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Not affected Vulnerable Not affected Not affected Not affected
Show less packages

CVE-2023-50186

Medium priority
Needs evaluation

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release
gst-plugins-bad1.0 Not affected Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2023-44446

Medium priority

Some fixes available 4 of 9

GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Vulnerable Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2023-44429

Medium priority

Some fixes available 5 of 6

GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Fixed Fixed Not affected Not affected Not affected
Show less packages

CVE-2023-40476

Medium priority

Some fixes available 4 of 7

GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Vulnerable Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2023-40475

Medium priority

Some fixes available 4 of 9

GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Vulnerable Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2023-40474

Medium priority

Some fixes available 4 of 9

GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Vulnerable Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2023-37329

Medium priority

Some fixes available 3 of 7

GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Ignored Ignored
gst-plugins-bad1.0 Not affected Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2021-3185

Medium priority
Vulnerable

A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.

1 affected package

gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad1.0 Not affected Not affected Not affected Vulnerable Vulnerable
Show less packages

CVE-2017-5848

Low priority

Some fixes available 1 of 7

The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Not affected Not affected Not affected Not affected Vulnerable
Show less packages