Lucene search
K

60 matches found

cnnvd
cnnvd
added 2026/05/14 12:0 a.m.10 views

GStreamer 数字错误漏洞

GStreamer is a set of open-source frameworks for processing streaming media. Versions of GStreamer prior to 1.28.2 contained a numerical error vulnerability. This vulnerability stemmed from the qtdemuxparsetrak function in the isomp4 plugin, which did not properly validate atomic data when parsin...

5.5CVSS5.8AI score0.00101EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/14 12:0 a.m.12 views

PT-2026-41013

Name of the Vulnerable Software and Affected Versions GStreamer gst-plugins-good versions prior to 1.28.2 Description An issue exists when parsing MP4 audio tracks where the isomp4 plugin's qtdemux audio caps function fails to sufficiently validate atom data before performing division operations...

9.1CVSS5.8AI score0.00208EPSS
Exploits0References14
ptsecurity
ptsecurity
added 2026/05/14 12:0 a.m.12 views

PT-2026-41012

Name of the Vulnerable Software and Affected Versions GStreamer gst-plugins-good versions prior to 1.28.2 Description An issue exists when parsing MP4 audio tracks where the isomp4 plugin's qtdemux parse trak function fails to sufficiently validate atom data before performing division operations...

9.1CVSS5.8AI score0.00208EPSS
Exploits0References13
nessus
nessus
added 2026/05/14 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46469

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemuxparsetrak function does not...

5.5CVSS5.8AI score0.00101EPSS
Exploits0References3
osv
osv
added 2026/05/08 5:47 a.m.6 views

BIT-JRE-2025-47219

In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetrak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure...

8.1CVSS5.9AI score0.00625EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.13 views

PT-2026-38860

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux parse trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure...

8.1CVSS5.9AI score0.00625EPSS
Exploits1References4
osv
osv
added 2026/05/06 2:45 p.m.4 views

BIT-JAVA-2025-47219

In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetrak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure...

8.1CVSS6.8AI score0.00625EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/05/06 12:0 a.m.16 views

PT-2026-37839

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux parse trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure...

8.1CVSS6.9AI score0.00625EPSS
Exploits1References4
nessus
nessus
added 2026/01/21 12:0 a.m.91 views

Azul Zulu Java Multiple Vulnerabilities (2026-01-20)

The version of Azul Zulu installed on the remote host is 6 prior to 6.77.0.12 / 7 prior to 7.83.0.12 / 8 prior to 8.91.0.12 / 11 prior to 11.85.12 / 17 prior to 17.63.12 / 21 prior to 21.47.14 / 25 prior to 25.31.14. It is, therefore, affected by multiple vulnerabilities as referenced in the...

8.1CVSS7.1AI score0.01067EPSS
Exploits4References11
debian
debian
added 2025/12/25 5:39 p.m.7 views

[SECURITY] [DLA 4419-1] gst-plugins-good1.0 security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4419-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 25, 2025 https://wiki.debian.org/LTS -...

8.1CVSS7.3AI score0.00625EPSS
Exploits2
nessus
nessus
added 2025/12/25 12:0 a.m.4 views

Debian dla-4419 : gstreamer1.0-gtk3 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4419 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4419-1 [email protected]...

8.1CVSS7.8AI score0.00625EPSS
Exploits2References6
astralinux
astralinux
added 2025/11/01 10:54 a.m.5 views

Astra Linux – Vulnerability in gst-plugins-good1.0

In GStreamer through 1.26.1, the isomp4 plugin’s qtdemuxparsetrak function may read past the end of a heap buffer while parsing an MP4 file, potentially leading to information disclosure...

8.1CVSS6.7AI score0.00625EPSS
Exploits1References3
nessus
nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: gstreamer1-plugins-good (UTSA-2025-987413)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987413 advisory. In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to information...

6.6CVSS5.7AI score0.002EPSS
Exploits1References4
amazon
amazon
added 2025/09/15 12:0 a.m.7 views

Medium: gstreamer1-plugins-good

Issue Overview: In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure. CVE-2025-47183 In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetrak function may read past t...

8.1CVSS7.1AI score0.00625EPSS
Exploits2
nessus
nessus
added 2025/09/15 12:0 a.m.7 views

Amazon Linux 2023 : gstreamer1-plugins-good, gstreamer1-plugins-good-gtk (ALAS2023-2025-1185)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1185 advisory. In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure. CVE-2025-47183 I...

8.1CVSS7.9AI score0.00625EPSS
Exploits2References6
nessus
nessus
added 2025/08/27 12:0 a.m.9 views

TencentOS Server 4: gstreamer1-plugins-good (TSSA-2025:0705)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0705 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.1CVSS7.8AI score0.00625EPSS
Exploits1References2
nessus
nessus
added 2025/08/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-47183

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to...

6.6CVSS5.6AI score0.002EPSS
Exploits1References4
nessus
nessus
added 2025/08/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-47219

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetrak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to...

8.1CVSS7.8AI score0.00625EPSS
Exploits1References3
nessus
nessus
added 2025/08/19 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-47539

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer is a library for constructing graphs of media-handling components. An out-of-bounds write vulnerability was identified in the converttos3341a function...

9.8CVSS8AI score0.00994EPSS
Exploits0References2
nvd
nvd
added 2025/08/07 8:15 p.m.8 views

CVE-2025-47183

In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure...

6.6CVSS0.002EPSS
Exploits1References2
Rows per page
Query Builder