rpm package
opensuse/gstreamer-plugins-good&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/gstreamer-plugins-good&distro=openSUSE%20Leap%2015.6
Vulnerabilities (24)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-47543 | — | < 1.24.0-150600.3.3.1 | 1.24.0-150600.3.3.1 | Dec 11, 2024 | GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is bi | ||
| CVE-2024-47540 | — | < 1.24.0-150600.3.3.1 | 1.24.0-150600.3.3.1 | Dec 11, 2024 | GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uni | ||
| CVE-2024-47539 | — | < 1.24.0-150600.3.3.1 | 1.24.0-150600.3.3.1 | Dec 11, 2024 | GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy between the size of memory allocated to the stora | ||
| CVE-2024-47537 | — | < 1.24.0-150600.3.3.1 | 1.24.0-150600.3.3.1 | Dec 11, 2024 | GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type QtDemuxSample. The problem is that samples_count is read from |
- CVE-2024-47543Dec 11, 2024affected < 1.24.0-150600.3.3.1fixed 1.24.0-150600.3.3.1
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is bi
- CVE-2024-47540Dec 11, 2024affected < 1.24.0-150600.3.3.1fixed 1.24.0-150600.3.3.1
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uni
- CVE-2024-47539Dec 11, 2024affected < 1.24.0-150600.3.3.1fixed 1.24.0-150600.3.3.1
GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the convert_to_s334_1a function in isomp4/qtdemux.c. The vulnerability arises due to a discrepancy between the size of memory allocated to the stora
- CVE-2024-47537Dec 11, 2024affected < 1.24.0-150600.3.3.1fixed 1.24.0-150600.3.3.1
GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream->samples to accommodate stream->n_samples + samples_count elements of type QtDemuxSample. The problem is that samples_count is read from
Page 2 of 2