CVE-2016-9446

2017-01-23T21:59:00
ID CVE-2016-9446
Type cve
Reporter cve@mitre.org
Modified 2018-01-05T02:31:00

Description

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas.