Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gstreamer vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-5846
The gst_asf_demux_process_ext_stream_props function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer prior to 1.10.3 allows remote malicious users to cause a denial of service (invalid memory read and crash) via vectors related to the number of languages in a video ...
Gstreamer Project Gstreamer
828
VMScore
CVE-2009-0387
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code...
Gstreamer Good Plug-ins 0.10.10
Gstreamer Good Plug-ins 0.10.11
Gstreamer Good Plug-ins 0.10.9
Gstreamer Plug-ins 0.8.5
828
VMScore
CVE-2009-0397
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote malicious users to execute arbi...
Gstreamer Plug-ins 0.8.5
Gstreamer Good Plug-ins 0.10.10
Gstreamer Good Plug-ins 0.10.9
Gstreamer Good Plug-ins 0.10.11
828
VMScore
CVE-2009-0386
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11 might allow remote malicious users to execute arbitrary code via crafted Composition Time To Sample (ctts...
Gstreamer Good Plug-ins 0.10.11
Gstreamer Good Plug-ins 0.10.9
Gstreamer Good Plug-ins 0.10.10
668
VMScore
CVE-2009-0586
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) prior to 0.10.23 in GStreamer allows context-dependent malicious users to execute arbitrary code via a crafted COVERART tag...
Gstreamer Project Gstreamer
Canonical Ubuntu Linux 8.10
445
VMScore
CVE-2017-5847
The gst_asf_demux_process_ext_content_desc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote malicious users to cause a denial of service (out-of-bounds heap read) via vectors involving extended content descriptors.
Gstreamer Project Gstreamer
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2022-1925
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can'...
Gstreamer Project Gstreamer
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2022-2122
DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, ...
Gstreamer Project Gstreamer
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2022-1922
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in matroskademux element in gst_matroska_decompress_data function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the unde...
Gstreamer Project Gstreamer
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2022-1923
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in matroskademux element in bzip decompression function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS ...
Gstreamer Project Gstreamer
Debian Debian Linux 10.0
Debian Debian Linux 11.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »