Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 18 results


CVE-2023-37327

Medium priority

Some fixes available 6 of 12

GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...

4 affected packages

gst-plugins-base0.10, gst-plugins-base1.0, gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-base0.10 Not in release Not in release Not in release Ignored Needs evaluation
gst-plugins-base1.0 Not affected Fixed Fixed Needs evaluation Needs evaluation
gst-plugins-good0.10 Not in release Not in release Not in release Ignored Needs evaluation
gst-plugins-good1.0 Not affected Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2017-5845

Low priority
Fixed

The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a ncdt sub-tag that "goes...

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Not affected
gst-plugins-good1.0 Fixed
Show less packages

CVE-2017-5841

Low priority
Fixed

The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving ncdt tags.

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Not affected
gst-plugins-good1.0 Fixed
Show less packages

CVE-2017-5840

Low priority
Fixed

The qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving the current stts index.

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-10199

Low priority
Fixed

The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-10198

Low priority
Fixed

The gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted audio file.

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-9636

Medium priority
Fixed

Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-9635

Medium priority
Fixed

Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-9634

Medium priority
Fixed

Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application...

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages

CVE-2016-9810

Medium priority
Fixed

The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which...

2 affected packages

gst-plugins-good0.10, gst-plugins-good1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10 Fixed
gst-plugins-good1.0 Fixed
Show less packages