Astra Linux – Vulnerability in gst-plugins-ugly1.0

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may va...

CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

PT-2026-23763

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description This issue allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with the library is required for exploitation, and attack vectors may vary...

The vulnerability of the demuxer component in the FFmpeg multimedia library, which arises from reading data beyond the buffer’s acceptable limits, allows attackers to gain access to confidential data.

The vulnerability of the demuxer component in the FFmpeg multimedia library relates to reading data from buffer registers beyond their allowable limits. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data through a specially created ASF file...

SUSE CVE-2017-5844

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted ASF file...

SUSE CVE-2017-14057

In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...

SUSE CVE-2019-14776

A heap-based buffer over-read exists in DemuxInit in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file...

PT-2022-17448 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to memory corruption in the video driver due to a double free error that occurs while parsing an ASF clip. This problem affects various Snapdragon products,...

The vulnerability of the ASF_Support::ReadHeaderObject function in the “exempi” utility allows a attacker to cause a service failure.

The vulnerability of the ASFSupport::ReadHeaderObject function XMPFiles/source/FormatSupport/ASFSupport.cpp in the “exempi” utility is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure by using a specially created “.as...

UBUNTU-CVE-2019-14776

A heap-based buffer over-read exists in DemuxInit in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file...

UBUNTU-CVE-2018-1999011

FFmpeg before commit 2b46ebdbff1d8dec7a3d8ea280a612b91a582869 contains a Buffer Overflow vulnerability in asfo format demuxer that can result in heap-buffer-overflow that may result in remote code execution. This attack appears to be exploitable via specially crafted ASF file that has to be...

DEBIAN-CVE-2018-1999015

FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASFF format demuxer that can result in heap memory reading. This attack appear to be exploitable via specially crafted ASF file that has to provided as input. This vulnerability appears to...

The vulnerability of the Libavcodec library, which is part of multimedia libraries like Ffmpeg, allows a hacker to execute arbitrary code.

The vulnerability of the Libavcodec library, which is part of multimedia libraries like Ffmpeg, exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using a specially created ASF file...

DEBIAN-CVE-2017-18236

An issue was discovered in Exempi before 2.4.4. The ASFSupport::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASFSupport.cpp allows remote attackers to cause a denial of service infinite loop via a crafted .asf file...

FFmpeg libavformat/mov.c File Denial of Service Vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the libavformat/mov.c file in FFmpeg version 3.3.3, which is caused by the program's failure to adequately detect EOF End of File. The vulnerability can b...

UBUNTU-CVE-2017-5844

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted ASF file...

DEBIAN-CVE-2006-2458

Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via 1 the asfreadheader function in the ASF plugin plugins/asfextractor.c, and 2 the parsetrakatom function in the QT plugin plugins/qtextractor.c...