Search CVE reports
1 – 10 of 16 results
CVE-2024-0444
Medium priorityGStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release | Not in release |
gst-plugins-bad1.0 | Not affected | Vulnerable | Not affected | Not affected | Not affected |
CVE-2023-50186
Medium priorityGStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | — | — |
gst-plugins-bad1.0 | Not affected | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2023-44446
Medium prioritySome fixes available 4 of 9
GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Vulnerable | Fixed | Fixed | Vulnerable | Vulnerable |
CVE-2023-44429
Medium prioritySome fixes available 5 of 6
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Fixed | Fixed | Not affected | Not affected | Not affected |
CVE-2023-40476
Medium prioritySome fixes available 4 of 7
GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Vulnerable | Fixed | Fixed | Vulnerable | Vulnerable |
CVE-2023-40475
Medium prioritySome fixes available 4 of 9
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Vulnerable | Fixed | Fixed | Vulnerable | Vulnerable |
CVE-2023-40474
Medium prioritySome fixes available 4 of 9
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Vulnerable | Fixed | Fixed | Vulnerable | Vulnerable |
CVE-2023-37329
Medium prioritySome fixes available 3 of 7
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Ignored | Ignored |
gst-plugins-bad1.0 | Not affected | Fixed | Fixed | Vulnerable | Vulnerable |
CVE-2021-3185
Medium priorityA flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.
1 affected package
gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad1.0 | Not affected | Not affected | Not affected | Vulnerable | Vulnerable |
CVE-2017-5848
Low prioritySome fixes available 1 of 7
The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.
2 affected packages
gst-plugins-bad0.10, gst-plugins-bad1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
gst-plugins-bad0.10 | Not in release | Not in release | Not in release | Not in release | Not in release |
gst-plugins-bad1.0 | Not affected | Not affected | Not affected | Not affected | Vulnerable |