Lucene search
+L

20 matches found

osv
osv
added 2026/05/08 5:46 a.m.7 views

BIT-JRE-2024-47597 GHSL-2024-245: GStreamer has an OOB-read in qtdemux_parse_samples

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been detected in the function qtdemuxparsesamples within qtdemux.c. This issue arises when the function qtdemuxparsesamples reads data beyond the boundaries of the stream-stco buffer. The following code...

9.1CVSS5.7AI score0.01161EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2024/12/19 12:0 a.m.5 views

The vulnerability of the qtdemux_parse_samples function in the Gstreamer multimedia framework, which allows a hacker to cause a service failure

The vulnerability of the qtdemuxparsesamples function in the Gstreamer multimedia framework is related to reading data beyond the allowable range of memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

9.4CVSS6.7AI score0.01161EPSS
Exploits0References13Affected Software8
osv
osv
added 2024/12/12 12:0 a.m.3 views

UBUNTU-CVE-2024-47597

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been detected in the function qtdemuxparsesamples within qtdemux.c. This issue arises when the function qtdemuxparsesamples reads data beyond the boundaries of the stream-stco buffer. The following code...

9.1CVSS5.7AI score0.01161EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2024/12/11 7:1 p.m.20 views

CVE-2024-47597 GHSL-2024-245: GStreamer has an OOB-read in qtdemux_parse_samples

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been detected in the function qtdemuxparsesamples within qtdemux.c. This issue arises when the function qtdemuxparsesamples reads data beyond the boundaries of the stream-stco buffer. The following code...

5.1CVSS6.5AI score0.01161EPSS
Exploits0References3
cvelist
cvelist
added 2024/12/11 7:1 p.m.22 views

CVE-2024-47597 GHSL-2024-245: GStreamer has an OOB-read in qtdemux_parse_samples

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been detected in the function qtdemuxparsesamples within qtdemux.c. This issue arises when the function qtdemuxparsesamples reads data beyond the boundaries of the stream-stco buffer. The following code...

5.1CVSS0.01161EPSS
Exploits0References3
nvd
nvd
added 2017/02/09 3:59 p.m.19 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS7.2AI score0.04717EPSS
Exploits0References9
osv
osv
added 2017/02/09 3:59 p.m.29 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS6.6AI score
Exploits0References9
prion
prion
added 2017/02/09 3:59 p.m.22 views

Design/Logic Flaw

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

5CVSS7AI score0.04717EPSS
Exploits0References9Affected Software1
cvelist
cvelist
added 2017/02/09 3:0 p.m.28 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.1AI score0.04717EPSS
Exploits0References9
cve
cve
added 2017/02/09 3:0 p.m.116 views

CVE-2017-5840

CVE-2017-5840 affects the GStreamer project, specifically the gst-plugins-good package. The vulnerability is in the qtdemux_parse_samples function (gst/isomp4/qtdemux.c) and can be triggered to cause an out-of-bounds heap read, leading to denial of service. The issue is exploitable via crafted me...

7.5CVSS7.1AI score0.04717EPSS
Exploits0References9Affected Software1
debiancve
debiancve
added 2017/02/09 3:0 p.m.27 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS7.4AI score0.04717EPSS
Exploits0
alpinelinux
alpinelinux
added 2017/02/09 3:0 p.m.76 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS7.2AI score0.04717EPSS
Exploits0
ubuntucve
ubuntucve
added 2017/02/09 12:0 a.m.35 views

CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS6.8AI score0.04717EPSS
Exploits0References3
prion
prion
added 2009/02/03 11:30 a.m.15 views

Heap overflow

Heap-based buffer overflow in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11, and GStreamer Plug-ins aka gstreamer-plugins 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample aka...

9.3CVSS8.5AI score0.07147EPSS
Exploits1References22Affected Software2
cve
cve
added 2009/02/03 11:0 a.m.85 views

CVE-2009-0397

CVE-2009-0397 affects GStreamer: deprecated heap-based buffer overflow in qtdemux_parse_samples in gst/qtdemux/qtdemux.c, impacting GStreamer Good Plug-ins 0.10.9–0.10.11 and GStreamer plug-ins 0.8.5. A crafted QuickTime .mov file could allow remote code execution. According to the connected advi...

9.3CVSS7.7AI score0.07147EPSS
Exploits1References22Affected Software2
prion
prion
added 2009/02/02 7:30 p.m.18 views

Design/Logic Flaw

Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...

9.3CVSS8.1AI score0.06483EPSS
Exploits1References18Affected Software2
nvd
nvd
added 2009/02/02 7:30 p.m.23 views

CVE-2009-0387

Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...

9.3CVSS7.4AI score0.06483EPSS
Exploits1References18
pypa
pypa
added 2009/02/02 7:30 p.m.11 views

PYSEC-2009-14

Heap-based buffer overflow in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 might allow remote attackers to execute arbitrary code via crafted Composition Time To Sample ctts atom data in a malformed QuickTime medi...

9.3CVSS6.4AI score0.07147EPSS
Exploits1References18Affected Software1
ubuntucve
ubuntucve
added 2009/02/02 12:0 a.m.24 views

CVE-2009-0386

Heap-based buffer overflow in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 might allow remote attackers to execute arbitrary code via crafted Composition Time To Sample ctts atom data in a malformed QuickTime medi...

9.3CVSS6.2AI score0.07147EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2009/02/02 12:0 a.m.28 views

CVE-2009-0387

Array index error in the qtdemuxparsesamples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins aka gst-plugins-good 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted Sync Sample aka stss atom da...

9.3CVSS6.2AI score0.06483EPSS
Exploits1References2
Rows per page
Query Builder