CVE-2021-3497
Description
GStreamer before 1.18.4 has a use-after-free in Matroska demuxing triggered by a malformed file, potentially leading to code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
GStreamer before 1.18.4 has a use-after-free in Matroska demuxing triggered by a malformed file, potentially leading to code execution.
Vulnerability
A use-after-free vulnerability exists in the Matroska demuxer of GStreamer's gst-plugins-good package before version 1.18.4 [3]. The flaw occurs in error code paths when processing specially crafted Matroska files, causing the application to access already-freed memory [2]. Affected versions include gst-plugins-good 1.x up to 1.18.3 and 0.10.x after 0.10.8 [3].
Exploitation
An attacker can exploit this vulnerability by providing a malformed Matroska (.mkv) file to a target user, who must open it with an application using GStreamer [3]. The malicious file triggers an error during demuxing, leading to a use-after-free condition [2]. No authentication or special network position is required; the attack vector is local file processing or potentially network streams.
Impact
Successful exploitation could cause a denial of service (application crash) or, as the analysis indicates, possibly arbitrary code execution with the privileges of the user running the application [2][3]. Code execution is described as difficult due to modern compiler and glibc protections, but the risk remains [2].
Mitigation
The vulnerability is fixed in gst-plugins-good version 1.18.4 and later [3]. Gentoo users should update to >=media-libs/gst-plugins-good-1.20.2 [1]. No known workaround exists [1]. Users are advised to upgrade as soon as possible.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
12- GStreamer/GStreamerdescription
- osv-coords10 versionspkg:rpm/almalinux/gstreamer1-plugins-goodpkg:rpm/almalinux/gstreamer1-plugins-good-gtkpkg:rpm/opensuse/gstreamer-plugins-good&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/gstreamer-plugins-good&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/gstreamer-plugins-good&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1
< 1.16.1-3.el8+ 9 more
- (no CPE)range: < 1.16.1-3.el8
- (no CPE)range: < 1.16.1-3.el8
- (no CPE)range: < 1.16.3-lp152.2.6.1
- (no CPE)range: < 1.16.3-3.6.1
- (no CPE)range: < 1.16.3-3.6.1
- (no CPE)range: < 1.16.3-3.6.1
- (no CPE)range: < 1.8.3-16.3.1
- (no CPE)range: < 1.12.5-150000.3.7.2
- (no CPE)range: < 1.8.3-16.3.1
- (no CPE)range: < 1.12.5-150000.3.7.2
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
5- security.gentoo.org/glsa/202208-31mitrevendor-advisoryx_refsource_GENTOO
- www.debian.org/security/2021/dsa-4900mitrevendor-advisoryx_refsource_DEBIAN
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- gstreamer.freedesktop.org/security/sa-2021-0002.htmlmitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2021/04/msg00027.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.