CVE search results

21 – 30 of 31 results

Detailed view

Sort by:

CVE-2023-40475

Medium priority

Some fixes available 6 of 8

GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Ignored
gst-plugins-bad1.0	Not affected	Not affected	Fixed	Fixed	Fixed

CVE-2023-40474

Medium priority

Some fixes available 6 of 8

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Ignored
gst-plugins-bad1.0	Not affected	Not affected	Fixed	Fixed	Fixed

CVE-2023-37329

Medium priority

Some fixes available 5 of 7

GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Ignored
gst-plugins-bad1.0	Not affected	Not affected	Fixed	Fixed	Fixed

CVE-2021-3185

Medium priority

Vulnerable

A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.

1 affected package

gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad1.0	Not affected	Not affected	Not affected	Not affected	Vulnerable

CVE-2017-5848

Low priority

Some fixes available 1 of 6

The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Not in release
gst-plugins-bad1.0	Not affected	Not affected	Not affected	Not affected	Not affected

CVE-2017-5843

Low priority

Some fixes available 1 of 4

Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Not in release
gst-plugins-bad1.0	Not affected	Not affected	Not affected	Not affected	Not affected

CVE-2016-9446

Medium priority

Fixed

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	—	—	—	—	—
gst-plugins-bad1.0	—	—	—	—	—

CVE-2016-9445

Medium priority

Fixed

Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	—	—	—	—	—
gst-plugins-bad1.0	—	—	—	—	—

CVE-2016-9813

Low priority

Some fixes available 19 of 21

The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Not in release
gst-plugins-bad1.0	Fixed	Fixed	Fixed	Fixed	Fixed

CVE-2016-9812

Low priority

Some fixes available 19 of 21

The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gst-plugins-bad0.10	Not in release	Not in release	Not in release	Not in release	Not in release
gst-plugins-bad1.0	Fixed	Fixed	Fixed	Fixed	Fixed

Export to JSON

Results by page:

Search CVE reports