Lucene search
+L

19 matches found

Rockylinux
Rockylinux
added 2025/10/04 12:11 a.m.7 views

gstreamer1-plugins-base security update

An update is available for gstreamer1-plugins-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs of...

9.1CVSS6.8AI score0.01324EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.8 views

Amazon Linux 2 : gstreamer1-plugins-base (ALAS-2025-2971)

The version of gstreamer1-plugins-base installed on the remote host is prior to 1.18.4-5. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2971 advisory. GStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability h...

9.1CVSS6.8AI score0.01324EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2025/07/03 12:0 a.m.5 views

AlmaLinux 9 : gstreamer1-plugins-base (ALSA-2025:7243)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7243 advisory. gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference CVE-2024-47542 gstreamer1-plugins-base: GStreamer has an out-of-boun...

9.1CVSS7.1AI score0.01324EPSS
Exploits2References6
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.11 views

Moderate: gstreamer1-plugins-base security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-base packages contain a collection of well-maintained base plug-ins. Security Fixes: gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference...

9.1CVSS7AI score0.01324EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-47542

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function,...

7.5CVSS6.9AI score0.01095EPSS
Exploits1References2
OSV
OSV
added 2025/01/10 2:42 p.m.14 views

SUSE-SU-2025:0065-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: - CVE-2024-47538: Fixed a stack-buffer overflow in vorbishandleidentificationpacket. bsc1234415 - CVE-2024-47835: Fixed a NULL-pointer dereference in LRC subtitle parser. bsc1234450 - CVE-2024-47600: Fixed an out-of-bounds read in...

9.8CVSS7.8AI score0.01324EPSS
Exploits2References15
Tenable Nessus
Tenable Nessus
added 2025/01/10 12:0 a.m.14 views

SUSE SLES12: gstreamer-plugins-base / gstreamer-plugins-base-devel / etc (SUSE-SU-2025:0052-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0052-1 advisory. - CVE-2024-47538: Fixed a stack-buffer overflow in vorbishandleidentificationpacket. bsc1234415 - CVE-2024-47835: Fixed a NULL-pointer...

9.8CVSS6.9AI score0.01324EPSS
Exploits2References22
OSV
OSV
added 2025/01/09 4:35 p.m.17 views

SUSE-SU-2025:0052-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: - CVE-2024-47538: Fixed a stack-buffer overflow in vorbishandleidentificationpacket. bsc1234415 - CVE-2024-47835: Fixed a NULL-pointer dereference in LRC subtitle parser. bsc1234450 - CVE-2024-47615: Fixed an out-of-bounds write i...

9.8CVSS8AI score0.01324EPSS
Exploits2References15
OpenVAS
OpenVAS
added 2024/12/19 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-7175-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.01324EPSS
Exploits2References2
OPENSUSE Linux
OPENSUSE Linux
added 2024/12/14 12:0 a.m.4 views

gstreamer-plugins-base-1.24.10-2.1 on GA media (moderate)

gstreamer-plugins-base-1.24.10-2.1 on GA media Announcement ID: openSUSE-SU-2024:14577-1 Rating: moderate Cross-References: CVE-2024-47538 CVE-2024-47542 CVE-2024-47600 CVE-2024-47615 CVE-2024-47835 CVSS scores: CVE-2024-47538 SUSE : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-47542...

7.8CVSS9.7AI score0.01272EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2024/12/12 8:44 a.m.12 views

CVE-2024-47542

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

6.2CVSS6.7AI score0.01095EPSS
Exploits1References6
NVD
NVD
added 2024/12/12 2:3 a.m.13 views

CVE-2024-47542

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

7.5CVSS0.01095EPSS
Exploits1References4
OSV
OSV
added 2024/12/12 2:3 a.m.6 views

AZL-62375 CVE-2024-47542 affecting package gstreamer1 1.20.0-2

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

7.5CVSS6.8AI score0.01095EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/12/12 12:0 a.m.4 views

CVE-2024-47542

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

7.5CVSS6.7AI score0.01095EPSS
Exploits1References5
Circl
Circl
added 2024/12/11 7:32 p.m.4 views

CVE-2024-47542

creationtimestamp| type| source ---|---|--- 2024-12-11 19:32:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113635854706009967 2024-12-17 12:51:51+00:00| seen| https://github.blog/security/vulnerability-research/uncovering-gstreamer-secrets/...

7.5CVSS9.5AI score0.01095EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/12/11 6:55 p.m.11 views

CVE-2024-47542 GHSL-2024-235: GStreamer ID3v2 parser out-of-bounds read and NULL-pointer dereference

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

6.8CVSS6.7AI score0.01095EPSS
Exploits1References3
CVE
CVE
added 2024/12/11 6:55 p.m.83 views

CVE-2024-47542

CVE-2024-47542 affects GStreamer (notably the id3v2 parser in id3v2.c). A null pointer dereference occurs in id3v2_read_synch_uint when work->hdr.frame_data is null, leading to a potential crash/DoS (SEGV). The issue is fixed in 1.24.10 of the GStreamer stack (as cited in multiple advisories a...

7.5CVSS6.8AI score0.01095EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/12/11 6:55 p.m.8 views

CVE-2024-47542 GHSL-2024-235: GStreamer ID3v2 parser out-of-bounds read and NULL-pointer dereference

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

6.8CVSS7.2AI score0.01095EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2024/12/11 6:55 p.m.16 views

CVE-2024-47542

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2readsynchuint function, located in id3v2.c. If id3v2readsynchuint is called with a null work-hdr.framedata, the pointer guint8 data is accessed without validatio...

7.5CVSS6.7AI score0.01095EPSS
Exploits1References4
Rows per page
Query Builder