28 matches found
Alibaba Cloud Linux 3 : 0011: gstreamer1-plugins-bad-free (ALINUX3-SA-2024:0011)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0011 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-44429: A heap-based buffer overfl...
openSUSE Security Advisory (openSUSE-SU-2024:0305-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : gstreamer-plugins-bad (openSUSE-SU-2024:0305-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0305-1 advisory. Adding references for already fixed vulnerability: - CVE-2023-50186: Fixed heap-based buffer overflow in the AV1 codec parser ZDI-CAN-22300,...
Security update for gstreamer-plugins-bad (important)
openSUSE Security Update: Security update for gstreamer-plugins-bad Announcement ID: openSUSE-SU-2024:0305-1 Rating: important References: 1215792 1217211 1217213 1218534 1223263 Cross-References: CVE-2023-40475 CVE-2023-44429 CVE-2023-44446 CVE-2023-50186 CVSS scores: CVE-2023-40475 SUSE: 8.8...
CVE-2023-44429
CVE-2023-44429 affects the GStreamer AV1 codec parser and is a heap-based buffer overflow that allows remote code execution. The flaw lies in parsing AV1 video data where user-supplied lengths are not properly validated before copying into a fixed-length heap buffer, enabling code execution in th...
CVE-2023-44429
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...
RHEL 9 : gstreamer1-plugins-bad-free (RHSA-2023:7873)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7873 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package...
gstreamer1-plugins-bad-free security update
1.22.1-2 - Patch CVE-2023-44429: AV1 codec parser heap-based buffer overflow - Patch CVE-2023-44446: MXF demuxer use-after-free - Resolves: RHEL-17030, RHEL-17039...
AlmaLinux 9 : gstreamer1-plugins-bad-free (ALSA-2023:7791)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:7791 advisory. - Fixes for GStreamer-SA-2023-0010 ZDI-CAN-22299 and GStreamer-SA-2023-0009 ZDI-CAN-22226 CVE-2023-44429 CVE-2023-44429 - MXF demuxer use-after-free...
Oracle Linux 9 : gstreamer1-plugins-bad-free (ELSA-2023-7791)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7791 advisory. - Patch CVE-2023-44429: AV1 codec parser heap-based buffer overflow - Patch CVE-2023-44446: MXF demuxer use-after-free Tenable has extracted the...
SUSE SLED15: gstreamer-plugins-bad / gstreamer-plugins-bad-chromaprint / etc (SUSE-SU-2023:4875-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4875-1 advisory. - CVE-2023-44429: Fixed GStreamer AV1 Codec Parsing Heap-based Buffer Overflow bsc1217211. Tenable has extracted the...
SUSE SLED15: gstreamer-plugins-bad / gstreamer-plugins-bad-chromaprint / etc (SUSE-SU-2023:4874-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4874-1 advisory. - CVE-2023-44429: Fixed GStreamer AV1 Codec Parsing Heap-based Buffer Overflow bsc1217211. Tenable has extracted the...
SUSE-SU-2023:4875-1 Security update for gstreamer-plugins-bad
This update for gstreamer-plugins-bad fixes the following issues: - CVE-2023-44429: Fixed GStreamer AV1 Codec Parsing Heap-based Buffer Overflow bsc1217211...
SUSE-SU-2023:4874-1 Security update for gstreamer-plugins-bad
This update for gstreamer-plugins-bad fixes the following issues: - CVE-2023-44429: Fixed GStreamer AV1 Codec Parsing Heap-based Buffer Overflow bsc1217211...
RHEL 9 : gstreamer1-plugins-bad-free (RHSA-2023:7791)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7791 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package...
RHEL 9 : gstreamer1-plugins-bad-free (RHSA-2023:7792)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7792 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package...
Important: Red Hat Security Advisory: gstreamer1-plugins-bad-free security update
An update for gstreamer1-plugins-bad-free is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Amazon Linux 2 : gstreamer1-plugins-bad-free (ALAS-2023-2355)
The version of gstreamer1-plugins-bad-free installed on the remote host is prior to 1.18.4-5. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2355 advisory. gstreamer: AV1 codec parser heap-based buffer overflow CVE-2023-44429 gstreamer: MXF demuxer...
Fedora: Security Advisory for gst-devtools (FEDORA-2023-7bd66f219f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for python-gstreamer1 (FEDORA-2023-7bd66f219f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...