3 matches found
CVE-2009-0387
Affects GStreamer Good Plugins (gst-plugins-good) versions 0.10.9–0.10.11, with the root cause in qtdemux_parse_samples() in gst/qtdemux/qtdemux.c. Remote attackers could crash the application and potentially execute code by crafting QuickTime (mov) Sync Sample (stss) atom data, related to “mark ...
CVE-2009-0397
CVE-2009-0397 affects GStreamer: deprecated heap-based buffer overflow in qtdemux_parse_samples in gst/qtdemux/qtdemux.c, impacting GStreamer Good Plug-ins 0.10.9–0.10.11 and GStreamer plug-ins 0.8.5. A crafted QuickTime .mov file could allow remote code execution. According to the connected advi...
CVE-2009-0398
CVE-2009-0398 affects GStreamer-plugins: an array indexing error in the QuickTime decoding plug-in (gst_qtp_trak_handler in qtdemux.c) on GStreamer 0.6.0. This security flaw could allow a remote attacker to cause a crash or potentially execute arbitrary code by supplying a crafted QuickTime media...