rpm package
suse/gstreamer-plugins-base&distro=SUSE Linux Enterprise Workstation Extension 12 SP5
pkg:rpm/suse/gstreamer-plugins-base&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-4453 | — | < 1.8.3-13.15.1 | 1.8.3-13.15.1 | May 22, 2024 | GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack ve | ||
| CVE-2023-37328 | — | < 1.8.3-13.9.1 | 1.8.3-13.9.1 | May 3, 2024 | GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but atta | ||
| CVE-2023-37327 | — | < 1.8.3-13.9.1 | 1.8.3-13.9.1 | May 3, 2024 | GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vector | ||
| CVE-2021-3522 | Med | 5.5 | < 1.8.3-13.6.1 | 1.8.3-13.6.1 | Jun 2, 2021 | GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags. |
- CVE-2024-4453May 22, 2024affected < 1.8.3-13.15.1fixed 1.8.3-13.15.1
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack ve
- CVE-2023-37328May 3, 2024affected < 1.8.3-13.9.1fixed 1.8.3-13.9.1
GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but atta
- CVE-2023-37327May 3, 2024affected < 1.8.3-13.9.1fixed 1.8.3-13.9.1
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vector
- affected < 1.8.3-13.6.1fixed 1.8.3-13.6.1
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.