Описание
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.26.2-1ubuntu1 |
| esm-infra/bionic | released | 1.14.5-0ubuntu1~18.04.3+esm1 |
| esm-infra/focal | released | 1.16.3-0ubuntu1.3+esm1 |
| esm-infra/xenial | ignored | changes too intrusive |
| jammy | released | 1.20.3-0ubuntu1.4 |
| noble | released | 1.24.2-1ubuntu1.2 |
| plucky | released | 1.26.0-1ubuntu2.1 |
| questing | released | 1.26.2-1ubuntu1 |
| upstream | released | 1.26.2-1 |
Показывать по
EPSS
8.1 High
CVSS3
Связанные уязвимости
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak fu ...
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
Уязвимость плагина gst-plugins-good мультимедийного фреймворка Gstreamer, позволяющая нарушителю получить доступ к конфиденциальной информации
EPSS
8.1 High
CVSS3