Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-1925

Опубликовано: 19 июл. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.8

Описание

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

РелизСтатусПримечание
bionic

released

1.14.5-0ubuntu1~18.04.3
devel

not-affected

esm-infra/bionic

released

1.14.5-0ubuntu1~18.04.3
esm-infra/focal

released

1.16.3-0ubuntu1.1
esm-infra/xenial

released

1.8.3-1ubuntu0.5+esm1
focal

released

1.16.3-0ubuntu1.1
impish

ignored

end of life
jammy

released

1.20.3-0ubuntu1
kinetic

not-affected

trusty

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 16%
0.00052
Низкий

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2022-1925

CVSS3: 7.8
redhat
больше 3 лет назад

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

nvd логотип

CVE-2022-1925

CVSS3: 7.8
nvd
больше 3 лет назад

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

debian логотип

CVE-2022-1925

CVSS3: 7.8
debian
больше 3 лет назад

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decom ...

github логотип

GHSA-v6c6-gcwr-p5pm

CVSS3: 7.8
github
больше 3 лет назад

DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow in matroskaparse element in gst_matroska_decompress_data function which causes a heap overflow. Due to restrictions on chunk sizes in the matroskademux element, the overflow can't be triggered, however the matroskaparse element has no size checks.

fstec логотип

BDU:2022-06448

CVSS3: 7.8
fstec
больше 3 лет назад

Уязвимость функции gst_matroska_decompress_data мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 16%
0.00052
Низкий

7.8 High

CVSS3