rpm package
suse/gstreamer-plugins-bad&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP5
pkg:rpm/suse/gstreamer-plugins-bad&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5
Vulnerabilities (12)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-47282 | Low | 3.9 | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 16, 2024 | Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-22656 | Low | 3.9 | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 16, 2024 | Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-47169 | — | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 16, 2024 | Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2023-45221 | — | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 16, 2024 | Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-48368 | — | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 16, 2024 | Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2023-50186 | — | < 1.22.0-150500.3.25.2 | 1.22.0-150500.3.25.2 | May 3, 2024 | GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but at | ||
| CVE-2023-44446 | — | < 1.22.0-150500.3.17.1 | 1.22.0-150500.3.17.1 | May 3, 2024 | GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors m | ||
| CVE-2023-44429 | — | < 1.22.0-150500.3.12.1 | 1.22.0-150500.3.12.1 | May 3, 2024 | GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but att | ||
| CVE-2023-40476 | — | < 1.22.0-150500.3.9.1 | 1.22.0-150500.3.9.1 | May 3, 2024 | GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack | ||
| CVE-2023-40475 | — | < 1.22.0-150500.3.17.1 | 1.22.0-150500.3.17.1 | May 3, 2024 | GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors | ||
| CVE-2023-40474 | — | < 1.22.0-150500.3.6.1 | 1.22.0-150500.3.6.1 | May 3, 2024 | GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors | ||
| CVE-2023-37329 | — | < 1.22.0-150500.3.3.1 | 1.22.0-150500.3.3.1 | May 3, 2024 | GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but atta |
- affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
- affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2023-47169May 16, 2024affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2023-45221May 16, 2024affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2023-48368May 16, 2024affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2023-50186May 3, 2024affected < 1.22.0-150500.3.25.2fixed 1.22.0-150500.3.25.2
GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but at
- CVE-2023-44446May 3, 2024affected < 1.22.0-150500.3.17.1fixed 1.22.0-150500.3.17.1
GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors m
- CVE-2023-44429May 3, 2024affected < 1.22.0-150500.3.12.1fixed 1.22.0-150500.3.12.1
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but att
- CVE-2023-40476May 3, 2024affected < 1.22.0-150500.3.9.1fixed 1.22.0-150500.3.9.1
GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack
- CVE-2023-40475May 3, 2024affected < 1.22.0-150500.3.17.1fixed 1.22.0-150500.3.17.1
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors
- CVE-2023-40474May 3, 2024affected < 1.22.0-150500.3.6.1fixed 1.22.0-150500.3.6.1
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors
- CVE-2023-37329May 3, 2024affected < 1.22.0-150500.3.3.1fixed 1.22.0-150500.3.3.1
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but atta