Lucene search
+L

14 matches found

OSV
OSV
added 2026/06/18 6:4 p.m.5 views

MGASA-2026-0222 Updated gstreamer1.0-plugins-bad, gstreamer1.0-plugins-base, gstreamer1.0-plugins-good & gstreamer1.0-plugins-ugly packages fix security vulnerabilities

CVE-2026-2921, GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability CVE-2026-2923.GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2026-3082, GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2026-308...

8.8CVSS7.5AI score0.00867EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2026/06/06 7:28 a.m.23 views

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs

Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same week, Google shipped Chrome 149 with patches for...

9.6CVSS5.9AI score0.0039EPSS
Exploits0
OSV
OSV
added 2026/03/19 1:48 p.m.6 views

SUSE-SU-2026:20915-1 Security update for gstreamer-plugins-ugly

This update for gstreamer-plugins-ugly fixes the following issues: - CVE-2026-2920: GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1259367. - CVE-2026-2922: GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability bsc1259370...

7.8CVSS6AI score0.00773EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

TencentOS Server 3: gstreamer1-plugins-bad-free (TSSA-2024:0196)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0196 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS7.7AI score0.02009EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/17 12:33 p.m.3 views

Security update for ffmpeg

This update for ffmpeg fixes the following issues: CVE-2022-1475: Fixed integer overflow in g729parse in llibavcodec/g729parser.c bsc1198898. CVE-2024-36616: Fixed integer overflow in the component libavformat/westwoodvqa.c bsc1234018. CVE-2024-36617: Fixed integer overflow vulnerability in the...

6.9CVSS6.9AI score0.0089EPSS
Exploits1References16
OSV
OSV
added 2025/07/17 12:33 p.m.8 views

SUSE-SU-2025:02352-1 Security update for ffmpeg

This update for ffmpeg fixes the following issues: - CVE-2022-1475: Fixed integer overflow in g729parse in llibavcodec/g729parser.c bsc1198898. - CVE-2024-36616: Fixed integer overflow in the component libavformat/westwoodvqa.c bsc1234018. - CVE-2024-36617: Fixed integer overflow vulnerability in...

6.5CVSS6.5AI score0.0089EPSS
Exploits1References9
OSV
OSV
added 2024/12/20 1:7 p.m.5 views

OESA-2024-2577 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n6.1.1 has an...

6.2CVSS7.3AI score0.00244EPSS
Exploits0References3
OSV
OSV
added 2024/12/20 1:7 p.m.5 views

OESA-2024-2576 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n7.0 is affected...

9.8CVSS7.1AI score0.00715EPSS
Exploits0References5
OSV
OSV
added 2024/12/20 1:45 a.m.6 views

OESA-2024-2578 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n6.1.1 has an...

6.2CVSS7.3AI score0.00244EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/12/18 2:32 a.m.4 views

gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c

A flaw was found in the GStreamer library. An integer overflow in the MP4/MOV demuxer's sample table parser can lead to out-of-bounds writes and NULL-pointer dereferences for certain input files. This vulnerability allows a malicious third party to trigger an application crash and, in the case of...

9.8CVSS6.2AI score0.00956EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/12/17 7:37 p.m.4 views

gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes

A flaw was found in the MP4/MOV demuxer and memory allocator in the GStreamer library. Processing a specially crafted input file can cause an integer overflow in the qtdemuxparsetheoraextension function. This issue leads to a small amount of memory being allocated to store a large input size,...

9.8CVSS7.3AI score0.01344EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/05/22 9:26 a.m.8 views

gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio

A heap buffer overflow flaw was found in the MXF file, demuxer, in the GStreamer Plugins Bad when handling malformed files with AES3 audio. This issue requires user interaction with the library. It may allow a malicious user to cause an integer overflow before allocating the buffer, triggering a...

8.8CVSS6.3AI score0.01871EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.5 views

gstreamer-plugins-good: Heap-based buffer overflow in the avi demuxer when handling certain AVI files

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the avi demuxer when processing a specially crafted AVI file. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00497EPSS
Exploits1References5
OSV
OSV
added 2017/02/03 3:59 p.m.5 views

UBUNTU-CVE-2016-4352

Integer overflow in the demuxer function in libmpdemux/demuxgif.c in Mplayer allows remote attackers to cause a denial of service crash via large dimensions in a gif file...

5.5CVSS6.1AI score0.01074EPSS
Exploits0References4
Rows per page
Query Builder