Search CVE reports
31 – 40 of 25687 results
CVE-2024-47596
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in the qtdemux_parse_svq3_stsd_data function within qtdemux.c. In the FOURCC_SMI_ case, seqh_size is read from the input...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47546
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in extract_cc_from_data function within qtdemux.c. In the FOURCC_c708 case, the subtraction atom_length - 8 may...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47545
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in qtdemux_parse_trak function within qtdemux.c. During the strf parsing case, the subtraction size -= 40 can lead...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47544
Medium priorityGStreamer is a library for constructing graphs of media-handling components. The function qtdemux_parse_sbgp in qtdemux.c is affected by a null dereference vulnerability. This vulnerability is fixed in 1.24.10.
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47543
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47542
Medium priorityGStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2_read_synch_uint function, located in id3v2.c. If id3v2_read_synch_uint is called with a null...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
Package | 22.04 LTS |
---|---|
gst-plugins-base0.10 | Not in release |
gst-plugins-base1.0 | Needs evaluation |
CVE-2024-47541
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability has been identified in the gst_ssa_parse_remove_override_codes function of the gstssaparse.c file. This function is...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
Package | 22.04 LTS |
---|---|
gst-plugins-base0.10 | Not in release |
gst-plugins-base1.0 | Needs evaluation |
CVE-2024-47540
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size <...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47539
Medium priorityGStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy...
2 affected packages
gst-plugins-good0.10, gst-plugins-good1.0
Package | 22.04 LTS |
---|---|
gst-plugins-good0.10 | Not in release |
gst-plugins-good1.0 | Needs evaluation |
CVE-2024-47538
Medium priorityGStreamer is a library for constructing graphs of media-handling components. A stack-buffer overflow has been detected in the vorbis_handle_identification_packet function within gstvorbisdec.c. The position array is a...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
Package | 22.04 LTS |
---|---|
gst-plugins-base0.10 | Not in release |
gst-plugins-base1.0 | Needs evaluation |