Search CVE reports
1 – 2 of 2 results
CVE-2024-47606
Medium prioritySome fixes available 8 of 15
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of...
4 affected packages
gst-plugins-good0.10, gst-plugins-good1.0, gstreamer0.10, gstreamer1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gst-plugins-good1.0 | Fixed | Fixed | Fixed | Needs evaluation | Needs evaluation |
| gstreamer0.10 | Not in release | Not in release | Not in release | — | Needs evaluation |
| gstreamer1.0 | Fixed | Fixed | Fixed | Needs evaluation | Needs evaluation |
CVE-2017-5838
Low prioritySome fixes available 1 of 4
The gst_date_time_new_from_iso8601_string function in gst/gstdatetime.c in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a malformed datetime string.
2 affected packages
gstreamer0.10, gstreamer1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gstreamer0.10 | Not in release | Not in release | Not in release | Not in release | Vulnerable |
| gstreamer1.0 | Not affected | Not affected | Not affected | Not affected | Fixed |