Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : gstreamer1-plugins-bad-free-1.16.1-4.el8 (AXSA:2024-8316:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8316:04 advisory. gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video CVE-2023-40474 gstreamer-plugins-bad:...

8.8CVSS8.3AI score0.02009EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2023-40476

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

8.8CVSS7.8AI score0.02009EPSS
Exploits0References2
OSV
OSV
added 2024/06/14 1:59 p.m.40 views

RLSA-2024:3060 Moderate: gstreamer1-plugins-bad-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with...

8.8CVSS7.6AI score0.02009EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2024/06/14 1:59 p.m.42 views

gstreamer1-plugins-bad-free security update

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs ...

8.8CVSS8.9AI score0.02009EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.36 views

Rocky Linux 8 : gstreamer1-plugins-bad-free (RLSA-2024:3060)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3060 advisory. gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video CVE-2023-40474 gstreamer-plugins-bad:...

8.8CVSS7.2AI score0.02009EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/05/28 12:0 a.m.25 views

Oracle Linux 8 : gstreamer1-plugins-bad-free (ELSA-2024-3060)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3060 advisory. - Patch CVE-2023-40474: Integer overflow - Patch CVE-2023-40475: Integer overflow - Patch CVE-2023-40476: Integer overflow in H.265 video parser Tenabl...

8.8CVSS7AI score0.02009EPSS
Exploits0References4
OSV
OSV
added 2024/05/22 12:0 a.m.29 views

ALSA-2024:3060 Moderate: gstreamer1-plugins-bad-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with...

8.8CVSS7.7AI score0.02009EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/05/14 12:0 a.m.42 views

Rocky Linux 9 : gstreamer1-plugins-bad-free (RLSA-2024:2287)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2287 advisory. - GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code ...

8.8CVSS7.9AI score0.02009EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.79 views

RHEL 7 : gstreamer-plugins-bad (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio...

8.4AI score0.02009EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2024/05/10 2:32 p.m.35 views

gstreamer1-plugins-bad-free security update

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs ...

8.8CVSS9AI score0.02009EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.46 views

Oracle Linux 9 : gstreamer1-plugins-bad-free (ELSA-2024-2287)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2287 advisory. - CVE-2023-40474: Integer overflow leading to heap overwrite in MXF - CVE-2023-40475: Integer overflow leading to heap overwrite in MXF - CVE-2023-4047...

8.8CVSS7AI score0.02009EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.20 views

CVE-2023-40476 GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer H265 Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS8.9AI score0.02009EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.159 views

CVE-2023-40476

CVE-2023-40476 affects GStreamer and its gst-plugins-bad1.0, with a stack-based buffer overflow in the H.265 video parser due to insufficient validation of user data length. This can allow a remote attacker to execute code in the context of the affected process. Exploitation details are not fully...

8.8CVSS8.5AI score0.02009EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/04/30 12:0 a.m.36 views

ALSA-2024:2287 Moderate: gstreamer1-plugins-bad-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with...

8.8CVSS7.9AI score0.02009EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.20 views

openSUSE: Security Advisory for gstreamer (openSUSE-SU-2023:0409-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.02009EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/20 12:0 a.m.24 views

openSUSE 15 Security Update : gstreamer-plugins-bad (openSUSE-SU-2023:0409-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0409-1 advisory. - Integer overflow leading to heap overwrite in MXF file handling with uncompressed video CVE-2023-40474, CVE-2023-40476 Note that Nessus has not...

8.8CVSS7AI score0.02009EPSS
Exploits0References7
OSV
OSV
added 2023/12/19 4:29 p.m.10 views

OPENSUSE-SU-2023:0409-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issues: - CVE-2023-40474: Fixed integer overflow causing out of bounds writes when handling invalid uncompressed video bsc1215796. - CVE-2023-40476: Fixed possible overflow using maxsublayersminus1 bsc1215793...

8.8CVSS9AI score0.02009EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/12/14 6:3 p.m.40 views

CVE-2023-40476

A stack-based buffer overflow was found in the GStreamer Plugins Bad when handling malformed files with H.265 video streams. This issue requires user interaction with the library and may allow a malicious user to cause an integer overflow before allocating the buffer, triggering a crash or code...

5.5CVSS9.6AI score0.02009EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/29 12:0 a.m.27 views

SUSE SLES12: gstreamer-plugins-bad / gstreamer-plugins-bad-devel / etc (SUSE-SU-2023:4597-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4597-1 advisory. - CVE-2023-40474: Fixed integer overflow causing out of bounds writes when handling invalid uncompressed video bsc1215796. -...

8.8CVSS6.8AI score0.02009EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/11/29 12:0 a.m.27 views

SUSE SLES15: gstreamer-plugins-bad / gstreamer-plugins-bad-chromaprint / etc (SUSE-SU-2023:4595-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4595-1 advisory. - CVE-2023-40474: Fixed integer overflow causing out of bounds writes when handling invalid uncompressed video bsc1215796. -...

8.8CVSS6.8AI score0.02009EPSS
Exploits0References7
Rows per page
Query Builder