USN-8130-2 gst-plugins-base1.0 vulnerability

USN-8130-1 fixed a vulnerability in GStreamer Base Plugins. This update provides the corresponding update for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Original advisory details: It was discovered that GStreamer Base Plugins incorrectly handled certain AVI media files. A remote attacker could use th...

gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update

An update is available for gstreamer1-plugins-ugly-free, gstreamer1-plugins-bad-free, gstreamer1-plugins-good, gstreamer1-plugins-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

RLSA-2026:6750 Important: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, and gstreamer1-plugins-good security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer:...

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

OESA-2026-1756 gstreamer1-plugins-base security update

Security Fixes: GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

CVE-2026-2921

GStreamer RIFF palette integer overflow (CVE-2026-2921) in AVI file handling allows arbitrary code execution in affected builds. Root cause: insufficient validation of palette data leading to an integer overflow before memory write. Affected components: RIFF/AVI palette handling within GStreamer ...

The vulnerability of the ICMPv6 network protocol implementation in Junos QFX5K routers allows a attacker to cause a service failure.

The vulnerability of the ICMPv6 network protocol implementation in Junos QFX5K routers lies in the execution of a loop with an unavailable exit condition when processing WAV/AVI format files. Exploiting this vulnerability allows a remote attacker to cause service failures...

Mandriva Update for mplayer MDKSA-2007:192 (mplayer)

Check for the Version of mplayer OpenVAS Vulnerability Test Mandriva Update for mplayer MDKSA-2007:192 mplayer Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Mandriva Update for mplayer MDKSA-2007:192 (mplayer)

Check for the Version of mplayer OpenVAS Vulnerability Test Mandriva Update for mplayer MDKSA-2007:192 mplayer Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Mandrake Linux Security Advisory : mplayer (MDKSA-2007:192)

A heap-based buffer overflow was found in MPlayer's AVI handling that could allow a remote attacker to cause a denial of service or possibly execute arbitrary code via a crafted .avi file. Updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable Network Security, In...