Search CVE reports
11 – 17 of 17 results
CVE-2021-3522
Medium priorityGStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
1 affected package
gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base1.0 | — | Not affected | Fixed | Fixed | Fixed |
CVE-2019-9928
High priorityGStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | Not in release | Fixed |
| gst-plugins-base1.0 | — | — | — | Fixed | Fixed |
CVE-2017-5844
Low priorityThe gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — | Fixed |
| gst-plugins-base1.0 | — | — | — | — | Fixed |
CVE-2017-5842
Low priorityThe html_context_handle_element function in gst/subparse/samiparse.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted SMI file, as demonstrated...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — | Not affected |
| gst-plugins-base1.0 | — | — | — | — | Fixed |
CVE-2017-5839
Low priorityThe gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service (stack overflow...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — | Not affected |
| gst-plugins-base1.0 | — | — | — | — | Fixed |
CVE-2017-5837
Low priorityThe gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — | Fixed |
| gst-plugins-base1.0 | — | — | — | — | Fixed |
CVE-2016-9811
Low priorityThe windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ico file.
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-base0.10 | — | — | — | — | Fixed |
| gst-plugins-base1.0 | — | — | — | — | Fixed |