4 matches found
SUSE CVE-2009-0586
Integer overflow in the gstvorbistagaddcoverart function gst-libs/gst/tag/gstvorbistag.c in vorbistag in gst-plugins-base aka gstreamer-plugins-base before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via a crafted COVERART tag that is converted from a base64...
gstreamer-plugins-base: integer overflow in gst_vorbis_tag_add_coverart()
Integer overflow in the gstvorbistagaddcoverart function gst-libs/gst/tag/gstvorbistag.c in vorbistag in gst-plugins-base aka gstreamer-plugins-base before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via a crafted COVERART tag that is converted from a base64...
CVE-2009-0586
GStreamer vulnerability CVE-2009-0586 affects gst-plugins-base prior to 0.10.23. The issue is an integer overflow in the Vorbis cover art handling (gst_vorbis_tag_add_coverart) when a COVERART tag is base64-decoded, triggering a heap-based buffer overflow. This could allow arbitrary code executio...
PT-2009-3229 · Gstreamer +1 · Gst-Plugins-Base +1
Name of the Vulnerable Software and Affected Versions: gst-plugins-base versions prior to 0.10.23 Description: The issue is related to an integer overflow in the gst vorbis tag add coverart function, which can lead to a heap-based buffer overflow. This occurs when a crafted COVERART tag, converte...