CVE-2025-47183

Опубликовано: 07 авг. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 6.6

Описание

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.

Релиз	Статус	Примечание
devel	released	1.26.2-1ubuntu1
esm-infra/bionic	ignored	changes too intrusive
esm-infra/focal	ignored	changes too intrusive
esm-infra/xenial	ignored	changes too intrusive
jammy	released	1.20.3-0ubuntu1.4
noble	released	1.24.2-1ubuntu1.2
plucky	released	1.26.0-1ubuntu2.1
questing	released	1.26.2-1ubuntu1
upstream	released	1.26.2-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 1%

0.00011

Низкий

6.6 Medium

CVSS3

Связанные уязвимости

CVE-2025-47183

CVSS3: 5.6

redhat

4 месяца назад

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.

CVE-2025-47183

CVSS3: 6.6

nvd

4 месяца назад

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.

CVE-2025-47183

CVSS3: 6.6

debian

4 месяца назад

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree fu ...

SUSE-SU-2025:02303-1

suse-cvrf

5 месяцев назад

Security update for gstreamer-plugins-good

GHSA-p7rv-557w-hw2m

CVSS3: 6.6

github

4 месяца назад

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.

EPSS

Процентиль: 1%

0.00011

Низкий

6.6 Medium

CVSS3

CVE-2025-47183

Описание

Пакет gst-plugins-good1.0

Ссылки на источники

Связанные уязвимости