Описание
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | code not present |
| gutsy | not-affected | code not present |
| hardy | not-affected | code not present |
| intrepid | not-affected | code not present |
| jaunty | not-affected | code not present |
| karmic | not-affected | code not present |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | code not present |
| devel | not-affected | 0.10.13-2 |
| gutsy | released | 0.10.6-0ubuntu4.2 |
| hardy | released | 0.10.7-3ubuntu0.2 |
| intrepid | released | 0.10.10.4-1ubuntu1.1 |
| jaunty | not-affected | 0.10.13-2 |
| karmic | not-affected | 0.10.13-2 |
| upstream | released | 0.10.13-1 |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."
Array index error in the qtdemux_parse_samples function in gst/qtdemux ...
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."
ELSA-2009-0271: gstreamer-plugins-good security update (IMPORTANT)
EPSS
9.3 Critical
CVSS2