rpm package
suse/gstreamer-plugins-base&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3
pkg:rpm/suse/gstreamer-plugins-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-3522 | Med | 5.5 | < 1.16.3-150200.4.6.2 | 1.16.3-150200.4.6.2 | Jun 2, 2021 | GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags. | |
| CVE-2021-3185 | — | < 1.16.3-4.3.1 | 1.16.3-4.3.1 | Jan 25, 2021 | A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution. |
- affected < 1.16.3-150200.4.6.2fixed 1.16.3-150200.4.6.2
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
- CVE-2021-3185Jan 25, 2021affected < 1.16.3-4.3.1fixed 1.16.3-4.3.1
A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.