Lucene search
K

73 matches found

NVD
NVD
added 2026/06/15 8:16 p.m.7 views

CVE-2026-52722

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS0.00288EPSS
Exploits0References4
OSV
OSV
added 2026/06/15 8:16 p.m.4 views

UBUNTU-CVE-2026-52722

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.9AI score0.00288EPSS
Exploits0References4
CVE
CVE
added 2026/06/15 7:15 p.m.18 views

CVE-2026-52722

GStreamer VMnc decoder in gstreamer1-plugins-bad-free contains a signed integer overflow in cursor payload handling. A crafted VMnc stream with large cursor dimensions can cause signed payload-size arithmetic overflow, bypass a length check, and lead to out-of-bounds reads. This may allow a remot...

7.1CVSS5.4AI score0.00288EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/15 7:15 p.m.29 views

CVE-2026-52722 Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS0.00288EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/15 7:15 p.m.6 views

CVE-2026-52722 Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.4AI score0.00288EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/15 7:15 p.m.6 views

CVE-2026-52722

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.3AI score0.00288EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.8 views

PT-2026-49338

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.4AI score0.00288EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-52722

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer...

7.1CVSS6AI score0.00288EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-10256

Malware in sbrugna...

7.5CVSS6.1AI score0.03569EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-10255

Malware in sbrugna...

7.5CVSS7.6AI score0.03691EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.28 views

RHEL 7 : gstreamer-plugins-bad-free (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer: buffer overflow in gsth264sliceparsedecrefpicmarking CVE-2021-3185 - The vmnc decoder in the...

9.8CVSS7.8AI score0.03569EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.5 views

SUSE CVE-2009-2628

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video...

9.3CVSS8AI score0.05568EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.2 views

SUSE CVE-2016-9445

Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service crash via large width and height values, which triggers a buffer overflow...

7.5CVSS7.4AI score0.03691EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.4 views

SUSE CVE-2016-9446

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...

7.5CVSS6.6AI score0.03569EPSS
Exploits0References9
OSV
OSV
added 2022/06/18 7:15 a.m.1 views

UBUNTU-CVE-2014-125004

A vulnerability has been found in FFmpeg 2.0 and classified as problematic. This vulnerability affects the function decodehextile of the file libavcodec/vmnc.c. The manipulation leads to memory corruption. The attack can be initiated remotely. It is recommended to apply a patch to fix this issue...

5.5CVSS5AI score0.0063EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/01 3:34 p.m.2 views

gstreamer-plugins-bad-free: Missing initialization of allocated heap memory leads to information leak

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...

7.5CVSS5.9AI score0.03569EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.52 views

EulerOS 2.0 SP1 : gstreamer1-plugins-bad-free (EulerOS-SA-2017-1008)

According to the versions of the gstreamer1-plugins-bad-free package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format...

7.8CVSS7.2AI score0.07903EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.37 views

EulerOS 2.0 SP2 : gstreamer1-plugins-bad-free (EulerOS-SA-2017-1007)

According to the versions of the gstreamer1-plugins-bad-free package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format...

7.8CVSS7.2AI score0.07903EPSS
Exploits1References5
NVD
NVD
added 2017/01/23 9:59 p.m.25 views

CVE-2016-9445

Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service crash via large width and height values, which triggers a buffer overflow...

7.5CVSS7.5AI score0.03691EPSS
Exploits0References10
NVD
NVD
added 2017/01/23 9:59 p.m.20 views

CVE-2016-9446

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...

7.5CVSS7.2AI score0.03569EPSS
Exploits0References9
Rows per page
Query Builder