Lucene search
MicrofocusCVELIST:CVE-2016-9445HistoryJan 23, 2017 - 9:00 p.m.
CVE-2016-9445
2017-01-2321:00:00
microfocus
www.cve.org
Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.
References
rhn.redhat.com/errata/RHSA-2016-2974.html
rhn.redhat.com/errata/RHSA-2017-0018.html
rhn.redhat.com/errata/RHSA-2017-0021.html
www.openwall.com/lists/oss-security/2016/11/18/12
www.openwall.com/lists/oss-security/2016/11/18/13
www.securityfocus.com/bid/94421
bugzilla.gnome.org/show_bug.cgi?id=774533
cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/gst/vmnc/vmncdec.c?id=4cb1bcf1422bbcd79c0f683edb7ee85e3f7a31fe
scarybeastsecurity.blogspot.de/2016/11/0day-poc-risky-design-decisions-in.html
security.gentoo.org/glsa/201705-10
Related
fedora
fedora
[SECURITY] Fedora 24 Update: gstreamer1-plugins-bad-free-1.8.3-2.fc24
2016-12-06 10:29:58
[SECURITY] Fedora 25 Update: gstreamer1-plugins-bad-free-1.10.1-1.fc25
2016-12-04 16:54:12
ubuntucve
ubuntucve
CVE-2016-9445
2017-01-23 00:00:00
osv
osv
CVE-2016-9445
2017-01-23 21:59:03
gst-plugins-bad0.10 - security update
2016-11-19 00:00:00
openvas
openvas
Fedora Update for gstreamer1-plugins-bad-free FEDORA-2016-a82e35272c
2016-12-07 00:00:00
Fedora Update for gstreamer1-plugins-bad-free FEDORA-2016-c4004fe99e
2016-12-07 00:00:00
CentOS Update for gstreamer-plugins-bad-free CESA-2016:2974 centos6
2016-12-22 00:00:00
nessus
nessus
Fedora 25 : gstreamer1-plugins-bad-free (2016-a82e35272c)
2016-12-05 00:00:00
Fedora 24 : gstreamer1-plugins-bad-free (2016-c4004fe99e)
2016-12-07 00:00:00
Oracle Linux 6 : gstreamer-plugins-bad-free (ELSA-2016-2974)
2016-12-22 00:00:00
cve
cve
CVE-2016-9445
2017-01-23 21:59:03
nvd
nvd
CVE-2016-9445
2017-01-23 21:59:03
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:14:57
redhatcve
redhatcve
CVE-2016-9445
2016-11-21 11:17:22
prion
prion
Integer overflow
2017-01-23 21:59:00
debiancve
debiancve
CVE-2016-9445
2017-01-23 21:59:03
suse
suse
Security update for gstreamer-plugins-bad (important)
2016-12-14 18:11:15
Security update for gstreamer-0_10-plugins-bad (important)
2016-12-14 13:07:27
Security update for gstreamer-plugins-bad (important)
2016-12-30 00:08:58
oraclelinux
oraclelinux
gstreamer-plugins-bad-free security update
2016-12-21 00:00:00
gstreamer-plugins-bad-free security update
2017-01-05 00:00:00
gstreamer1-plugins-bad-free security update
2017-01-05 00:00:00
archlinux
archlinux
[ASA-201701-3] gst-plugins-bad: multiple issues
2017-01-02 00:00:00
redhat
redhat
(RHSA-2016:2974) Important: gstreamer-plugins-bad-free security update
2016-12-21 11:38:13
(RHSA-2017:0018) Moderate: gstreamer-plugins-bad-free security update
2017-01-05 08:42:29
(RHSA-2017:0021) Moderate: gstreamer1-plugins-bad-free security update
2017-01-05 08:52:23
centos
centos
gstreamer security update
2016-12-21 17:41:28
gstreamer security update
2017-01-09 18:12:36
gstreamer1 security update
2017-01-09 18:11:54
debian
debian
[SECURITY] [DLA 712-1] gst-plugins-bad0.10 security update
2016-11-19 23:56:32
mageia
mageia
gentoo
gentoo
GStreamer plug-ins: User-assisted execution of arbitrary code
2017-05-18 00:00:00