This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Gstreamer Project First view 2015-05-14
Product Gstreamer Last view 2022-07-19
Version 0.10.26 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:gstreamer_project:gstreamer

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.8 2022-07-19 CVE-2022-2122

DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, it could be just a segfault or a heap overwrite.

7.8 2022-07-19 CVE-2022-1925

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

7.8 2022-07-19 CVE-2022-1924

DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in matroskademux element in lzo decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, it could be just a segfault or a heap overwrite. If the libc uses mmap for large chunks, and the OS supports mmap, then it is just a segfault (because the realloc before the integer overflow will use mremap to reduce the size of the chunk, and it will start to write to unmapped memory). However, if using a libc implementation that does not use mmap, or if the OS does not support mmap while using libc, then this could result in a heap overwrite.

7.8 2022-07-19 CVE-2022-1923

DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in matroskademux element in bzip decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, it could be just a segfault or a heap overwrite. If the libc uses mmap for large chunks, and the OS supports mmap, then it is just a segfault (because the realloc before the integer overflow will use mremap to reduce the size of the chunk, and it will start to write to unmapped memory). However, if using a libc implementation that does not use mmap, or if the OS does not support mmap while using libc, then this could result in a heap overwrite.

7.8 2022-07-19 CVE-2022-1922

DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in matroskademux element in gst_matroska_decompress_data function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, it could be just a segfault or a heap overwrite. If the libc uses mmap for large chunks, and the OS supports mmap, then it is just a segfault (because the realloc before the integer overflow will use mremap to reduce the size of the chunk, and it will start to write to unmapped memory). However, if using a libc implementation that does not use mmap, or if the OS does not support mmap while using libc, then this could result in a heap overwrite.

7.8 2022-07-19 CVE-2022-1921

Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite.

7.8 2022-07-19 CVE-2022-1920

Integer overflow in matroskademux element in gst_matroska_demux_add_wvpk_header function which allows a heap overwrite while parsing matroska files. Potential for arbitrary code execution through heap overwrite.

5.5 2021-06-02 CVE-2021-3522

GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.

7.8 2021-04-19 CVE-2021-3498

GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.

7.8 2021-04-19 CVE-2021-3497

GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.

8.8 2019-04-24 CVE-2019-9928

GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.

7.5 2017-02-09 CVE-2017-5848

The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.

7.5 2017-02-09 CVE-2017-5847

The gst_asf_demux_process_ext_content_desc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving extended content descriptors.

5.5 2017-02-09 CVE-2017-5846

The gst_asf_demux_process_ext_stream_props function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors related to the number of languages in a video file.

7.5 2017-02-09 CVE-2017-5845

The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a ncdt sub-tag that "goes behind" the surrounding tag.

5.5 2017-02-09 CVE-2017-5844

The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.

7.5 2017-02-09 CVE-2017-5843

Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service (crash) via vectors involving stream tags, as demonstrated by 02785736.mxf.

5.5 2017-02-09 CVE-2017-5842

The html_context_handle_element function in gst/subparse/samiparse.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted SMI file, as demonstrated by OneNote_Manager.smi.

7.5 2017-02-09 CVE-2017-5841

The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving ncdt tags.

7.5 2017-02-09 CVE-2017-5840

The qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving the current stts index.

7.5 2017-02-09 CVE-2017-5839

The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service (stack overflow and crash) via vectors involving nested WAVEFORMATEX.

7.5 2017-02-09 CVE-2017-5838

The gst_date_time_new_from_iso8601_string function in gst/gstdatetime.c in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a malformed datetime string.

5.5 2017-02-09 CVE-2017-5837

The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file.

7.5 2017-02-09 CVE-2016-10199

The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.

5.5 2017-02-09 CVE-2016-10198

The gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted audio file.

CWE : Common Weakness Enumeration

%idName
35% (11) CWE-125 Out-of-bounds Read
32% (10) CWE-787 Out-of-bounds Write
12% (4) CWE-190 Integer Overflow or Wraparound
6% (2) CWE-416 Use After Free
6% (2) CWE-369 Divide By Zero
3% (1) CWE-674 Uncontrolled Recursion
3% (1) CWE-665 Improper Initialization

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-09-11 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1206.nasl - Type: ACT_GATHER_INFO
2017-09-11 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1205.nasl - Type: ACT_GATHER_INFO
2017-08-25 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2017-2060.nasl - Type: ACT_GATHER_INFO
2017-08-22 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20170802_GStreamer_on_SL7_x.nasl - Type: ACT_GATHER_INFO
2017-08-03 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2017-2060.nasl - Type: ACT_GATHER_INFO
2017-07-17 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2017-a7373b6432.nasl - Type: ACT_GATHER_INFO
2017-07-13 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZLSA-2017-0018.nasl - Type: ACT_GATHER_INFO
2017-05-18 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201705-10.nasl - Type: ACT_GATHER_INFO
2017-05-01 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1009.nasl - Type: ACT_GATHER_INFO
2017-05-01 Name: The remote EulerOS host is missing multiple security updates.
File: EulerOS_SA-2017-1010.nasl - Type: ACT_GATHER_INFO
2017-04-27 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-512.nasl - Type: ACT_GATHER_INFO
2017-04-21 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-502.nasl - Type: ACT_GATHER_INFO
2017-04-21 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-495.nasl - Type: ACT_GATHER_INFO
2017-04-20 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-490.nasl - Type: ACT_GATHER_INFO
2017-04-19 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1041-1.nasl - Type: ACT_GATHER_INFO
2017-04-19 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1039-1.nasl - Type: ACT_GATHER_INFO
2017-04-19 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-480.nasl - Type: ACT_GATHER_INFO
2017-04-19 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-479.nasl - Type: ACT_GATHER_INFO
2017-04-14 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1012-1.nasl - Type: ACT_GATHER_INFO
2017-04-14 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1003-1.nasl - Type: ACT_GATHER_INFO
2017-04-14 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1004-1.nasl - Type: ACT_GATHER_INFO
2017-04-14 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-1010-1.nasl - Type: ACT_GATHER_INFO
2017-04-10 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-0967-1.nasl - Type: ACT_GATHER_INFO
2017-04-10 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-0966-1.nasl - Type: ACT_GATHER_INFO
2017-04-10 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2017-0962-1.nasl - Type: ACT_GATHER_INFO