Lucene search
K

752 matches found

Rockylinux
Rockylinux
added 4 days ago8 views

gstreamer1-plugins-ugly-free security update

An update is available for gstreamer1-plugins-ugly-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework, based on graph...

7.1CVSS6.1AI score0.00228EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 4 days ago5 views

GStreamer < 1.28.4 Multiple Vulnerabilities

The version of GStreamer installed on the remote host is prior to 1.28.4. It is, therefore, affected by multiple vulnerabilities: - Multiple vulnerabilities were found in the RealMedia demuxer rmdemux and RealAudio demuxer rademux elements in gst-plugins-ugly. The demuxers lacked proper bounds...

7.6CVSS7.3AI score0.0031EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 6 days ago4 views

gstreamer1-plugins-ugly-free: GStreamer: Out-of-bounds read in RealMedia demuxer FILEINFO metadata parser

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using reskippascalstring without validating that offsets remain...

7.1CVSS5.9AI score0.00221EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 6 days ago5 views

gstreamer1-plugins-ugly-free: GStreamer: Out-of-bounds read in RealMedia demuxer audio stream header parser

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS6AI score0.00228EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 6 days ago5 views

Moderate: Red Hat Security Advisory: gstreamer1-plugins-ugly-free security update

An update for gstreamer1-plugins-ugly-free is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.1CVSS6AI score0.00228EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 6 days ago10 views

Moderate: Red Hat Security Advisory: gstreamer1-plugins-ugly-free security update

An update for gstreamer1-plugins-ugly-free is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.1CVSS6AI score0.00228EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 6 days ago6 views

gstreamer1-plugins-ugly-free: GStreamer: Out-of-bounds read in RealMedia demuxer audio stream header parser

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS6AI score0.00228EPSS
Exploits0References4
Amazon
Amazon
added 6 days ago6 views

Important: gstreamer1-plugins-good

Issue Overview: Heap buffer overflow in the Matroska MKV demuxer when calculating decompressed buffer sizes for bz2-compressed tracks. The issue occurs due to missing parentheses in the buffer size calculation, causing incorrect memory allocation and potential out-of-bounds writes. from...

7.6CVSS6.5AI score0.0031EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/07/06 12:0 a.m.9 views

MiracleLinux 9 : gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free (AXSA:2026-1181:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-1181:01 advisory. GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer: GStreamer: Remote Code Execution via heap-based buff...

8.8CVSS7.4AI score0.00867EPSS
Exploits0References8
OSV
OSV
added 2026/07/02 2:4 p.m.2 views

SUSE-SU-2026:2727-1 Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues - CVE-2024-47540: uninitialized stack memory in Matroska/WebM demuxer bsc1234421. - CVE-2026-53705: Heap buffer overflow in WavPack decoder via integer overflow bsc1268449...

9.8CVSS7.3AI score0.01005EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/30 2:14 p.m.10 views

CVE-2026-12893

A flaw was found in the GStreamer gst-libav plugin. A NULL pointer dereference in the demuxer error handler can be triggered when processing malformed media files, such as crafted Musepack .mpc files. When a user or application opens such a file using GStreamer, the application crashes, resulting...

5.5CVSS5.7AI score
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.13 views

Astra Linux – Vulnerability in gst-plugins-ugly1.0

GStreamer RealMedia Demuxer Out-of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may var...

7.8CVSS7.7AI score0.00431EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.15 views

Astra Linux – Vulnerability in gst-plugins-ugly1.0

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may va...

7.8CVSS7.7AI score0.00773EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 1:10 p.m.5 views

OESA-2026-2696 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: A flaw was found in...

8.8CVSS6.1AI score0.00477EPSS
Exploits4References3
Mageia
Mageia
added 2026/06/18 6:4 p.m.7 views

Updated gstreamer1.0-plugins-bad, gstreamer1.0-plugins-base, gstreamer1.0-plugins-good & gstreamer1.0-plugins-ugly packages fix security vulnerabilities

CVE-2026-2921, GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability CVE-2026-2923.GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2026-3082, GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2026-308...

8.8CVSS7.6AI score0.00867EPSS
Exploits0References3
OSV
OSV
added 2026/06/18 6:4 p.m.4 views

MGASA-2026-0222 Updated gstreamer1.0-plugins-bad, gstreamer1.0-plugins-base, gstreamer1.0-plugins-good & gstreamer1.0-plugins-ugly packages fix security vulnerabilities

CVE-2026-2921, GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability CVE-2026-2923.GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2026-3082, GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2026-308...

8.8CVSS7.5AI score0.00867EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/15 9:30 p.m.11 views

EUVD-2026-36801

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS5.5AI score0.00228EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.9 views

EUVD-2026-36802

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using reskippascalstring without validating that offsets remain...

7.1CVSS5.2AI score0.00221EPSS
Exploits0References3
OSV
OSV
added 2026/06/15 8:16 p.m.7 views

DEBIAN-CVE-2026-53703

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS5.5AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2026/06/15 8:16 p.m.8 views

DEBIAN-CVE-2026-53704

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using reskippascalstring without validating that offsets remain...

7.1CVSS5.3AI score0.00221EPSS
Exploits0References1
Rows per page
Query Builder