14 matches found
MGASA-2026-0222 Updated gstreamer1.0-plugins-bad, gstreamer1.0-plugins-base, gstreamer1.0-plugins-good & gstreamer1.0-plugins-ugly packages fix security vulnerabilities
CVE-2026-2921, GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability CVE-2026-2923.GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2026-3082, GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2026-308...
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same week, Google shipped Chrome 149 with patches for...
SUSE-SU-2026:20915-1 Security update for gstreamer-plugins-ugly
This update for gstreamer-plugins-ugly fixes the following issues: - CVE-2026-2920: GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1259367. - CVE-2026-2922: GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability bsc1259370...
TencentOS Server 3: gstreamer1-plugins-bad-free (TSSA-2024:0196)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0196 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Security update for ffmpeg
This update for ffmpeg fixes the following issues: CVE-2022-1475: Fixed integer overflow in g729parse in llibavcodec/g729parser.c bsc1198898. CVE-2024-36616: Fixed integer overflow in the component libavformat/westwoodvqa.c bsc1234018. CVE-2024-36617: Fixed integer overflow vulnerability in the...
SUSE-SU-2025:02352-1 Security update for ffmpeg
This update for ffmpeg fixes the following issues: - CVE-2022-1475: Fixed integer overflow in g729parse in llibavcodec/g729parser.c bsc1198898. - CVE-2024-36616: Fixed integer overflow in the component libavformat/westwoodvqa.c bsc1234018. - CVE-2024-36617: Fixed integer overflow vulnerability in...
OESA-2024-2577 ffmpeg security update
FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n6.1.1 has an...
OESA-2024-2576 ffmpeg security update
FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n7.0 is affected...
OESA-2024-2578 ffmpeg security update
FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg n6.1.1 has an...
gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c
A flaw was found in the GStreamer library. An integer overflow in the MP4/MOV demuxer's sample table parser can lead to out-of-bounds writes and NULL-pointer dereferences for certain input files. This vulnerability allows a malicious third party to trigger an application crash and, in the case of...
gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes
A flaw was found in the MP4/MOV demuxer and memory allocator in the GStreamer library. Processing a specially crafted input file can cause an integer overflow in the qtdemuxparsetheoraextension function. This issue leads to a small amount of memory being allocated to store a large input size,...
gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio
A heap buffer overflow flaw was found in the MXF file, demuxer, in the GStreamer Plugins Bad when handling malformed files with AES3 audio. This issue requires user interaction with the library. It may allow a malicious user to cause an integer overflow before allocating the buffer, triggering a...
gstreamer-plugins-good: Heap-based buffer overflow in the avi demuxer when handling certain AVI files
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the avi demuxer when processing a specially crafted AVI file. This vulnerability can result in application crash, memory corruption, and code execution...
UBUNTU-CVE-2016-4352
Integer overflow in the demuxer function in libmpdemux/demuxgif.c in Mplayer allows remote attackers to cause a denial of service crash via large dimensions in a gif file...