11 matches found
RHCOS 4 : OpenShift Container Platform 4.9.19 (RHSA-2022:0339)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0339 advisory. - jenkins: no POST request is required for the endpoint handling manual build requests which could result in CSRF CVE-2022-20612 -...
EUVD-2023-55067
Malicious code in bioql PyPI...
gstreamer1-plugins-good security update
1.16.1-4 - CVE-2023-37327: integer overflow leading to heap overwrite in FLAC image tag handling - Resolves: RHEL-19469...
gstreamer-plugins-good: integer overflow leading to heap overwrite in FLAC image tag handling
A heap-based buffer overflow vulnerability was found in the FLAC parser in GStreamer. This issue occurs when processing malformed image tags, which could allow a malicious third party to induce a crash in the application and potentially execute code by manipulating the heap...
Moderate: Red Hat Security Advisory: gstreamer1-plugins-good security update
An update for gstreamer1-plugins-good is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Fedora 38 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2023-0984b63b23)
The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-0984b63b23 advisory. Update to 1.22.7, fixes CVE-2023-37327, CVE-2023-37328, CVE-2023-37329. Tenable has extracted the preceding description block directly from the Fedo...
SUSE SLES15: gstreamer-plugins-base / gstreamer-plugins-base-devel / etc (SUSE-SU-2023:3265-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3265-1 advisory. - CVE-2023-37327: Fixed GStreamer FLAC File Parsing Integer Overflow bsc1213128. - CVE-2023-37328: Fixed Heap-based...
SUSE SLES12 Security Update : gstreamer-plugins-good (SUSE-SU-2023:3246-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3246-1 advisory. - CVE-2023-37327: Fixed FLAC file parsing integer overflow remote code execution vulnerability. bsc1213128 Tenable has extracted the precedi...
SUSE SLED15: gstreamer-plugins-base / gstreamer-plugins-base-32bit / etc (SUSE-SU-2023:3221-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3221-1 advisory. - CVE-2023-37327: Fixed GStreamer FLAC File Parsing Integer Overflow bsc1213128. - CVE-2023-3732...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : GStreamer Base Plugins vulnerabilities (USN-6268-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6268-1 advisory. It was discovered that GStreamer Base Plugins incorrectly handled certain FLAC image tags. A remote attacker could use this issue to...
Amazon Linux 2 : gstreamer-plugins-good (ALAS-2023-2122)
The version of gstreamer-plugins-good installed on the remote host is prior to 0.10.31-20. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2122 advisory. Integer overflow leading to heap overwrite in FLAC image tag handling CVE-2023-37327 Tenable has extracted the...