Описание
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'write count' that goes beyond the initialized buffer.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | released | 0.10.31-3+nmu4ubuntu2.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.10.31-3+nmu1ubuntu5.1]] |
| precise | released | 0.10.31-1ubuntu1.3 |
| precise/esm | DNE | precise was released [0.10.31-1ubuntu1.3] |
| trusty | released | 0.10.31-3+nmu1ubuntu5.1 |
| trusty/esm | DNE | trusty was released [0.10.31-3+nmu1ubuntu5.1] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | ignored | end of life |
| vivid/ubuntu-core | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.10.2-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.2.4-1~ubuntu1.1]] |
| esm-infra/xenial | not-affected | 1.8.2-1ubuntu0.2 |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 1.2.4-1~ubuntu1.1 |
| trusty/esm | DNE | trusty was released [1.2.4-1~ubuntu1.1] |
| upstream | released | 1.10.2 |
| vivid/stable-phone-overlay | ignored | end of life |
| vivid/ubuntu-core | DNE |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'write count' that goes beyond the initialized buffer.
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'write count' that goes beyond the initialized buffer.
Heap-based buffer overflow in the flx_decode_delta_fli function in gst ...
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'write count' that goes beyond the initialized buffer.
ELSA-2017-0020: gstreamer1-plugins-good security update (MODERATE)
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3