rpm package
suse/gstreamer-0_10-plugins-base&distro=SUSE Linux Enterprise Point of Sale 11 SP3
pkg:rpm/suse/gstreamer-0_10-plugins-base&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-9928 | — | < 0.10.35-5.18.5.1 | 0.10.35-5.18.5.1 | Apr 24, 2019 | GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution. | ||
| CVE-2017-5844 | Med | 5.5 | < 0.10.35-5.18.5.1 | 0.10.35-5.18.5.1 | Feb 9, 2017 | The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file. | |
| CVE-2017-5837 | Med | 5.5 | < 0.10.35-5.18.5.1 | 0.10.35-5.18.5.1 | Feb 9, 2017 | The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file. |
- CVE-2019-9928Apr 24, 2019affected < 0.10.35-5.18.5.1fixed 0.10.35-5.18.5.1
GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.
- affected < 0.10.35-5.18.5.1fixed 0.10.35-5.18.5.1
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.
- affected < 0.10.35-5.18.5.1fixed 0.10.35-5.18.5.1
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file.