44 matches found
CVE-2026-46470
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemuxaudiocaps function does not sufficiently validate atom data before performing division operations, leading to denial of service due to integer division by zero...
CVE-2026-46469
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemuxparsetrak function does not sufficiently validate atom data before performing division operations, leading to denial of service due to integer division by zero...
PT-2026-41012
Name of the Vulnerable Software and Affected Versions GStreamer gst-plugins-good versions prior to 1.28.2 Description An issue exists when parsing MP4 audio tracks where the isomp4 plugin's qtdemux parse trak function fails to sufficiently validate atom data before performing division operations...
Linux Distros Unpatched Vulnerability : CVE-2026-46470
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemuxaudiocaps function does not...
Astra Linux - уязвимость в gst-plugins-good1.0
DOS: Potential heap overwrite during MKV demuxing using BZIP decompression. Integer overflow in the Matroskademux element within the BZIP decompression function can cause a segfault, or it may lead to a heap overwrite, depending on the libc and operating system used. Depending on the libc used an...
Astra Linux - уязвимость в gst-plugins-good1.0
DOS: Potential heap overwrite during MKV demuxing using LZO decompression. Integer overflow in the Matroskademux element within the LZO decompression function can cause a segfault, or potentially a heap overwrite, depending on the libc and operating system. Depending on the libc used and the...
Astra Linux - уязвимость в gst-plugins-good1.0
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
Astra Linux - уязвимость в gst-plugins-good1.0
DOS: Potential heap overwrite in qtdemux using zlib decompression. Integer overflow in the qtdemux element within the qtdemuxinflate function can lead to a segfault, or it may cause a heap overwrite, depending on the libc and operating system. Depending on the libc used and the underlying operati...
Linux Distros Unpatched Vulnerability : CVE-2026-5056
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The GStreamer project reports multiple security vulnerabilities fixed in the 1.28.2 release: Several security vulnerabilities were addressed, including: These...
Ubuntu: Security Advisory (USN-8131-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4419-1] gst-plugins-good1.0 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-4419-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 25, 2025 https://wiki.debian.org/LTS -...
Debian dla-4419 : gstreamer1.0-gtk3 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4419 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4419-1 [email protected]...
Ubuntu: Security Advisory (USN-7717-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DLA-4071-1 gst-plugins-good1.0 - security update
Bulletin has no description...
gst-plugins-good: Multiple Vulnerabilities
Background gst-plugins-good contains a set of plugins for the GStreamer open source multimedia framework. Description Multiple vulnerabilities have been discovered in gst-plugins-good. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...
Integer Overflow
gst-plugins-good is vulnerable to Integer Overflow. The vulnerability exists in the avidemux element within the gstavidemuxinvert function, allowing a heap overwrite during the parsing of AVI files. This poses a potential risk of arbitrary code execution through the heap overwrite...
Integer Overflow
gst-plugins-good is vulnerable to Integer Overflow. The vulnerability exists in the matroskademux element within the gstmatroskademuxaddwvpkheader function, allowing a heap overwrite during the parsing of Matroska files. This poses a potential risk of arbitrary code execution through the heap...
Denial Of Service (DoS)
gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability arises from an integer overflow in the matroskademux element within the gstmatroskadecompressdata function, leading to a potential segmentation fault or the risk of a heap overwrite...
Denial Of Service (DoS)
gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability stems from an integer overflow in the matroskademux element within the gstmatroskadecompressdata function, attributed to the absence of size checks. This issue results in a heap overwrite during MKV demuxing using...
Integer Overflow
gst-plugins-good is vulnerable to Integer Overflow. The vulnerability allows code execution with the privileges of the vulnerable application resulting in a potential denial-of-service DoS or a heap-based buffer overflow...