Gstreamer
by Gstreamer
Source repositories
CVEs (105)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-1921 | 0.00 | — | 0.00 | Jul 19, 2022 | Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite. | |||
| CVE-2021-3498 | 0.00 | — | 0.02 | Apr 19, 2021 | GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files. | |||
| CVE-2021-3497 | 0.00 | — | 0.01 | Apr 19, 2021 | GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files. | |||
| CVE-2015-0797 | 0.00 | — | 0.05 | May 14, 2015 | GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264… | |||
| CVE-2009-0586 | 0.00 | — | 0.06 | Mar 14, 2009 | Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via a crafted COVERART tag that… |
- CVE-2022-1921Jul 19, 2022risk 0.00cvss —epss 0.00
Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite.
- CVE-2021-3498Apr 19, 2021risk 0.00cvss —epss 0.02
GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
- CVE-2021-3497Apr 19, 2021risk 0.00cvss —epss 0.01
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.
- CVE-2015-0797May 14, 2015risk 0.00cvss —epss 0.05
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264…
- CVE-2009-0586Mar 14, 2009risk 0.00cvss —epss 0.06
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via a crafted COVERART tag that…
Page 6 of 6