CVE-2026-53701

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

EUVD-2026-36294

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

PT-2023-7232 · Gstreamer +6 · Gstreamer +6

Name of the Vulnerable Software and Affected Versions: GStreamer affected versions not specified Description: The issue is related to a heap-based buffer overflow in the AV1 Codec parsing of the GStreamer multimedia framework. This allows remote attackers to execute arbitrary code on affected...

The vulnerability of the `derive_collocated_motion_vectors` function in the h.265 Libde265 codec implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the derivecollocatedmotionvectors function in the h.265 Libde265 implementation is related to writing beyond buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. A security vulnerability exists in Mozilla Firefox due to an out-of-bounds read when using H264 decoding...

PKUVCL davs2 安全漏洞

davs2 is an open source decoder for AVS2-P2/IEEE1857.4 video coding standard open source by PKUVCL in China. A security vulnerability exists in PKUVCL davs2 v1.6.205, which stems from a global buffer overflow in the parsesequenceheader function in its source/common/header.cc:269 component...