Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gstreamer project gstreamer vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2009-0397
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote malicious users to execute arbi...
Gstreamer Plug-ins 0.8.5
Gstreamer Good Plug-ins 0.10.10
Gstreamer Good Plug-ins 0.10.9
Gstreamer Good Plug-ins 0.10.11
9.3
CVSSv2
CVE-2009-0386
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11 might allow remote malicious users to execute arbitrary code via crafted Composition Time To Sample (ctts...
Gstreamer Good Plug-ins 0.10.11
Gstreamer Good Plug-ins 0.10.9
Gstreamer Good Plug-ins 0.10.10
9.3
CVSSv2
CVE-2009-0387
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 up to and including 0.10.11 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code...
Gstreamer Good Plug-ins 0.10.10
Gstreamer Good Plug-ins 0.10.11
Gstreamer Good Plug-ins 0.10.9
Gstreamer Plug-ins 0.8.5
9.3
CVSSv2
CVE-2008-1686
Array index vulnerability in Speex 1.1.12 and previous versions, as used in libfishsound 0.9.0 and previous versions, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib prior to 1.1.12, and many other products, allows remote malicious users to exec...
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.0
Xine Xine-lib 0.99
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.11
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xiph Speex 1.1.9
Xiph Speex 1.1.8
Xiph Speex 1.0.5
Xiph Speex 1.0.3
Xiph Speex 1.1.2
Xiph Speex 1.1.11
Xiph Speex 1.1.10
Xiph Speex 1.1.4
Xiph Speex 1.1.3
7.5
CVSSv2
CVE-2021-3517
There is a flaw in the xml entity encoding functionality of libxml2 in versions prior to 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most like...
Xmlsoft Libxml2
Redhat Jboss Core Services -
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp E-series Santricity Storage Manager -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Snapdrive -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp Manageability Software Development Kit -
Netapp E-series Santricity Web Services -
Netapp E-series Santricity Os Controller
Netapp Hci H410c Firmware -
7.5
CVSSv2
CVE-2009-1438
Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug prior to 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent malicious users to execute arbitrary code via a MED file with a crafted (1) song comment or (...
Konstanty Bialkowski Libmodplug
Konstanty Bialkowski Libmodplug 0.8.4
Konstanty Bialkowski Libmodplug 0.8
7.5
CVSSv2
CVE-2009-0586
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) prior to 0.10.23 in GStreamer allows context-dependent malicious users to execute arbitrary code via a crafted COVERART tag...
Gstreamer Project Gstreamer
Canonical Ubuntu Linux 8.10
7.5
CVSSv2
CVE-2006-4800
Multiple buffer overflows in libavcodec in ffmpeg prior to 0.4.9_p20060530 allow remote malicious users to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tt...
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
6.8
CVSSv2
CVE-2021-3498
GStreamer prior to 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
Gstreamer Project Gstreamer
Redhat Enterprise Linux 7.0
Debian Debian Linux 10.0
Redhat Enterprise Linux 8.0
6.8
CVSSv2
CVE-2021-3497
GStreamer prior to 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.
Gstreamer Project Gstreamer
Redhat Enterprise Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »