18 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-5837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial o...
RHEL 6 : mingw-virt-viewer (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-bad-free: Invalid memory read in gstpsdemuxparsepsm CVE-2017-5848 - The...
RHEL 5 : gstreamer-plugins-base (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-base: Floating point exception in gstriffcreateaudiocaps CVE-2017-5844 - The...
Mageia: Security Advisory (MGASA-2017-0320)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES11 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2019:14076-1)
This update for gstreamer-010-plugins-base fixes the following issues : Security issues fixed : CVE-2017-5837: Fixed a floating point exception in gstriffcreateaudiocaps bsc1024076. CVE-2017-5844: Fixed a floating point exception in gstriffcreateaudiocaps bsc1024079. CVE-2019-9928: Fixed a...
EulerOS 2.0 SP1 : gstreamer (EulerOS-SA-2017-1205)
According to the versions of the gstreamer packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in gstreamer1, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-bad-free packages. An...
EulerOS 2.0 SP2 : gstreamer (EulerOS-SA-2017-1206)
According to the versions of the gstreamer packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in gstreamer1, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-bad-free packages. An...
RHEL 7 : GStreamer (RHSA-2017:2060)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2060 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The following packages have been upgraded t...
Moderate: Red Hat Security Advisory: GStreamer security, bug fix, and enhancement update
An update is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links ...
openSUSE Security Update : gstreamer-plugins-base (openSUSE-2017-512)
This update for gstreamer-plugins-base fixes the following security issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 - A crafted AVI file could have caused a stack overflow leading to DoS bsc1024047,...
openSUSE Security Update : gstreamer-0_10-plugins-base (openSUSE-2017-502)
This update for gstreamer-010-plugins-base fixes the following issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C...
SUSE SLED12 / SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2017:1012-1)
This update for gstreamer-010-plugins-base fixes the following issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 Note that Tenable Network Security has extracted the preceding description block directly...
Fedora Update for mingw-gstreamer1-plugins-base FEDORA-2017-a56d78acb8
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : mingw-gstreamer1-plugins-base (2017-a56d78acb8)
Security fix for CVE-2017-5837, CVE-2017-5839, CVE-2017-5842, CVE-2017-5844 - Downgrade to 1.10.3 as it is the latest stable release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...
[SECURITY] [DLA 827-1] gst-plugins-base0.10 security update
Package : gst-plugins-base0.10 Version : 0.10.36-1.1+deb7u2 CVE ID : CVE-2017-5837 CVE-2017-5844 It was discovered that it is possible to trigger a floating point exception in GStreamer via specially crafted files, causing a denial of service. For Debian 7 "Wheezy", these problems have been fixed...
CVE-2017-5837
CVE-2017-5837 affects GStreamer, specifically the gst-plugins-base module. The vulnerability lies in the function gst_riff_create_audio_caps within riff-media.c, where processing of crafted video files can trigger a floating point exception, leading to a crash (denial of service). Affected lineag...
CVE-2017-5837
The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted video file...
[ASA-201702-4] gst-plugins-base-libs: multiple issues
Arch Linux Security Advisory ASA-201702-4 ========================================= Severity: Critical Date : 2017-02-03 CVE-ID : CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 Package : gst-plugins-base-libs Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1...