Search CVE reports
21 – 30 of 43 results
CVE-2024-47539
Medium prioritySome fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gst-plugins-good1.0 | Fixed | Fixed | Fixed | Needs evaluation | Needs evaluation |
CVE-2024-47537
Medium prioritySome fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gst-plugins-good1.0 | Fixed | Fixed | Fixed | Needs evaluation | Needs evaluation |
CVE-2023-37327
Medium prioritySome fixes available 6 of 12
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is...
4 affected packages
gst-plugins-base0.10, gst-plugins-base1.0, gst-plugins-good0.10, gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | Ignored | Needs evaluation |
| gst-plugins-base1.0 | Not affected | Fixed | Fixed | Needs evaluation | Needs evaluation |
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | Ignored | Needs evaluation |
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Needs evaluation | Needs evaluation |
CVE-2022-2122
Medium prioritySome fixes available 4 of 15
DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on...
2 affected packages
gst-plugins-good1.0, openjfx
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | Not affected | Fixed | Fixed | Fixed | Fixed |
| openjfx | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2022-1925
Medium prioritySome fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in...
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2022-1924
Medium prioritySome fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in matroskademux element in lzo decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS....
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2022-1923
Medium prioritySome fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in matroskademux element in bzip decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS....
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2022-1922
Medium prioritySome fixes available 4 of 5
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in matroskademux element in gst_matroska_decompress_data function which causes a segfault, or could cause a heap overwrite, depending on...
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2022-1921
Medium prioritySome fixes available 4 of 5
Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite.
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2022-1920
Medium prioritySome fixes available 4 of 5
Integer overflow in matroskademux element in gst_matroska_demux_add_wvpk_header function which allows a heap overwrite while parsing matroska files. Potential for arbitrary code execution through heap overwrite.
1 affected package
gst-plugins-good1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good1.0 | — | Fixed | Fixed | Fixed | Fixed |