rpm package
opensuse/gstreamer-plugins-ugly&distro=openSUSE Leap 16.0
pkg:rpm/opensuse/gstreamer-plugins-ugly&distro=openSUSE%20Leap%2016.0
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-2922 | — | < 1.26.7-160000.2.1 | 1.26.7-160000.2.1 | Mar 13, 2026 | GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vec | ||
| CVE-2026-2920 | — | < 1.26.7-160000.2.1 | 1.26.7-160000.2.1 | Mar 13, 2026 | GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack ve | ||
| CVE-2025-55159 | Med | — | < 1.26.7-160000.1.1 | 1.26.7-160000.1.1 | Aug 11, 2025 | slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the get_disjoint_mut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potentia |
- CVE-2026-2922Mar 13, 2026affected < 1.26.7-160000.2.1fixed 1.26.7-160000.2.1
GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vec
- CVE-2026-2920Mar 13, 2026affected < 1.26.7-160000.2.1fixed 1.26.7-160000.2.1
GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack ve
- affected < 1.26.7-160000.1.1fixed 1.26.7-160000.1.1
slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the get_disjoint_mut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potentia