Search CVE reports
1 – 10 of 20 results
In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
1 affected package
gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
In GStreamer through 1.26.1, the subparse plugin's subrip_unescape_formatting function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
1 affected package
gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
1 affected package
gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base1.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been detected in the parse_lrc function within gstsubparse.c. The parse_lrc function calls strchr() to find...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function gst_parse_vorbis_setup_packet within vorbis_parse.c. The integer size is read from the input file without...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the format_channel_mask function in gst-discoverer.c. The vulnerability affects the local array position,...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2_read_synch_uint function, located in id3v2.c. If id3v2_read_synch_uint is called with a null...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability has been identified in the gst_ssa_parse_remove_override_codes function of the gstssaparse.c file. This function is...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |
Some fixes available 4 of 7
GStreamer is a library for constructing graphs of media-handling components. A stack-buffer overflow has been detected in the `vorbis_handle_identification_packet` function within `gstvorbisdec.c`. The position array is a...
2 affected packages
gst-plugins-base0.10, gst-plugins-base1.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-base0.10 | Not in release | Not in release | Not in release | — |
| gst-plugins-base1.0 | Fixed | Fixed | Fixed | Needs evaluation |