Latest gstreamer project gstreamer Vulnerabilities

CVE-2022-1924
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in matroskademux element in lzo decompression function which causes a segfault, or could cause a heap overwrite...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-2122
DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending ...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-1925
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to ...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-1921
Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite.
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-1922
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in matroskademux element in gst_matroska_decompress_data function which causes a segfault, or could cause a he...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-1923
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in matroskademux element in bzip decompression function which causes a segfault, or could cause a heap overwri...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2022-1920
Integer overflow in matroskademux element in gst_matroska_demux_add_wvpk_header function which allows a heap overwrite while parsing matroska files. Potential for arbitrary code execution through heap...
Gstreamer Project Gstreamer<1.20.3
Debian Debian Linux=10.0
Debian Debian Linux=11.0
debian/gst-plugins-good1.0<=1.14.4-1+deb10u1
CVE-2021-3522
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
Gstreamer Project Gstreamer<1.18.4
Apple iPadOS
Apple watchOS
NetApp E-Series SANtricity OS Controller>=11.0.0<=11.70.1
Netapp E-series Santricity Storage Manager
IBM Cloud Pak for Business Automation
and 8 more
CVE-2021-3498
GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
debian/gst-plugins-good1.0
Gstreamer Project Gstreamer>=1.0.0<1.18.4
Debian Debian Linux=10.0
Redhat Enterprise Linux=7.0
Redhat Enterprise Linux=8.0
CVE-2021-3497
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.
Gstreamer Project Gstreamer>=0.10.0<1.18.4
Debian Debian Linux=9.0
Debian Debian Linux=10.0
Redhat Enterprise Linux=7.0
Redhat Enterprise Linux=8.0
debian/gst-plugins-good1.0
CVE-2019-9928
GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.
Gstreamer Project Gstreamer<1.16.0
Debian Debian Linux=8.0
Debian Debian Linux=9.0
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=18.10
and 6 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203