Lucene search
+L

38 matches found

rocky
rocky
added 6 days ago7 views

gstreamer1-plugins-bad-free security update

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GStreamer is a streaming media framework based on graphs ...

8.8CVSS6.2AI score0.0053EPSS
Exploits0
osv
osv
added 6 days ago4 views

RLSA-2026:37130 Important: gstreamer1-plugins-bad-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: gstreamer1-plugins-bad-free: GStreamer: Heap buffer overflow via crafted VNC server rectangle i...

8.8CVSS7.1AI score0.0053EPSS
Exploits0References3
nessus
nessus
added 6 days ago10 views

GStreamer < 1.28.5 Multiple Vulnerabilities

The version of GStreamer installed on the remote host is prior to 1.28.5. It is, therefore, affected by multiple vulnerabilities: - A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer...

7.1CVSS7.1AI score0.0031EPSS
Exploits0References4
redhat
redhat
added 2026/07/09 7:58 a.m.7 views

Important: Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

An update for gstreamer1-plugins-bad-free is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.2AI score0.0053EPSS
Exploits0References3
nessus
nessus
added 2026/07/09 12:0 a.m.6 views

Oracle Linux 9 : gstreamer1-plugins-bad-free (ELSA-2026-36834)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-36834 advisory. - Sync with c9s release -5..-7: fix for CVE-2026-2923, CVE-2026-3082 in dvbsuboverlay and jpegparser Resolves: RHEL-156242, RHEL-156255 - Fix bytes/bi...

8.8CVSS7AI score0.00787EPSS
Exploits0References5
nessus
nessus
added 2026/07/09 12:0 a.m.6 views

AlmaLinux 10 : gstreamer1-plugins-bad-free (ALSA-2026:36749)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:36749 advisory. gstreamer1-plugins-bad-free: GStreamer: Denial of service via AV1 tilelistobu parser byte/bit confusion CVE-2026-52718 gstreamer1-plugins-bad-free:...

8.8CVSS7.1AI score0.0053EPSS
Exploits0References6
nessus
nessus
added 2026/07/09 12:0 a.m.14 views

RHEL 10 : gstreamer1-plugins-bad-free (RHSA-2026:36749)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:36749 advisory. GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package...

8.8CVSS7.1AI score0.0053EPSS
Exploits0References10
osv
osv
added 2026/07/09 12:0 a.m.2 views

ALSA-2026:37130 Important: gstreamer1-plugins-bad-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: gstreamer1-plugins-bad-free: GStreamer: Heap buffer overflow via crafted VNC server rectangle i...

8.8CVSS7.1AI score0.0053EPSS
Exploits0References6
nessus
nessus
added 2026/07/08 12:0 a.m.6 views

Amazon Linux 2 : gstreamer1-plugins-bad-free, --advisory ALAS2-2026-3790 (ALAS-2026-3790)

The version of gstreamer1-plugins-bad-free installed on the remote host is prior to 1.18.4-5. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3790 advisory. A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The...

7.1CVSS7AI score0.0031EPSS
Exploits0References8
nvd
nvd
added 2026/06/15 8:16 p.m.10 views

CVE-2026-52722

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS0.0031EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2026/06/15 7:15 p.m.7 views

CVE-2026-52722 Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.4AI score0.0031EPSS
Exploits0References6
cvelist
cvelist
added 2026/06/15 7:15 p.m.40 views

CVE-2026-52722 Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS0.0031EPSS
Exploits0References6
redhatcve
redhatcve
added 2026/06/15 7:15 p.m.9 views

CVE-2026-52722

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS5.3AI score0.0031EPSS
Exploits0References4
nessus
nessus
added 2026/06/15 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-52722

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer...

7.1CVSS6AI score0.0031EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-10255

Malware in sbrugna...

7.5CVSS7.6AI score0.03691EPSS
Exploits0References18
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-10256

Malware in sbrugna...

7.5CVSS6.1AI score0.03569EPSS
Exploits0References16
nessus
nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 7 : gstreamer-plugins-bad-free (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer: buffer overflow in gsth264sliceparsedecrefpicmarking CVE-2021-3185 - The vmnc decoder in the...

9.8CVSS7.8AI score0.03569EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 4:55 a.m.4 views

SUSE CVE-2016-9445

Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service crash via large width and height values, which triggers a buffer overflow...

7.5CVSS7.4AI score0.03691EPSS
Exploits0References9
susecve
susecve
added 2023/02/15 4:55 a.m.4 views

SUSE CVE-2016-9446

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...

7.5CVSS6.6AI score0.03569EPSS
Exploits0References9
nvd
nvd
added 2017/01/23 9:59 p.m.22 views

CVE-2016-9446

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...

7.5CVSS7.2AI score0.03569EPSS
Exploits0References9
Rows per page
Query Builder