Unity Linux 20.1070e Security Update: gstreamer1-plugins-good (UTSA-2026-017384)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017384 advisory. DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gstmatroskadecompressdata function which...

RHSA-2026:6750 Red Hat Security Advisory: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, and gstreamer1-plugins-good security update

Bulletin has no description...

Fedora 42 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2026-3cc99e7d09)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-3cc99e7d09 advisory. Update to gstreamer-1.26.11. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

gstreamer1-plugins-bad-free security update

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs...

CVE-2025-47219

A flaw was found in gstreamer1-plugins-good. The isomp4 plugin's qtdemuxparsetrak function incorrectly handles MP4 file parsing, resulting in a heap buffer over-read. This flaw allows a local attacker to provide a specially crafted MP4 file. This over-read can lead to information disclosure...

CVE-2025-47183

A flaw was found in gstreamer1-plugins-good. The isomp4 plugin's qtdemuxparsetree function incorrectly handles MP4 file parsing, resulting in a heap buffer over-read. This flaw allows a local attacker to trigger this vulnerability by providing a specially crafted MP4 file. This over-read can lead...

CVE-2025-47807

A flaw was found in gstreamer1-plugins-base. The subparse plugin's subripunescapeformatting function contains a NULL pointer dereference when parsing a subtitle file, which can lead to a program crash. This vulnerability allows a local attacker to provide a specially crafted subtitle file, causin...

gstreamer1-plugins-bad-free security update

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs ...

OESA-2025-1705 gstreamer1-plugins-good security update

Security Fixes: CVE-2025-47219...

AlmaLinux 9 : gstreamer1-plugins-base (ALSA-2025:7243)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7243 advisory. gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference CVE-2024-47542 gstreamer1-plugins-base: GStreamer has an out-of-boun...

AlmaLinux 9 : gstreamer1-plugins-good (ALSA-2025:7242)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7242 advisory. gstreamer1-plugins-good: OOB-read in qtdemuxparsecontainer CVE-2024-47543 gstreamer1-plugins-good: GStreamer has an OOB-read in gstavisubtitleparsegab2chu...

Oracle Linux 10 : gstreamer1-plugins-bad-free (ELSA-2025-8184)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8184 advisory. 1.24.11-2 - fix for CVE-2025-3887 Resolves: RHEL-93045 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

TencentOS Server 3: gstreamer1-plugins-base (TSSA-2024:1146)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1146 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Important: Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

An update for gstreamer1-plugins-bad-free is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has...

RHSA-2025:8981 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHSA-2025:8980 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHSA-2025:8979 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHSA-2025:8976 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

RHEL 9 : gstreamer1-plugins-bad-free (RHSA-2025:8978)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:8978 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a...

RHEL 9 : gstreamer1-plugins-bad-free (RHSA-2025:8977)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:8977 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a...