exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 14

CVE-2024-47540

8 месяцев назад

GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.

CVSS3: 9.8

EPSS: Низкий

CVE-2024-47540

8 месяцев назад

CVSS3: 8.8

EPSS: Низкий

CVE-2024-47540

8 месяцев назад

CVSS3: 9.8

EPSS: Низкий

CVE-2024-47540

8 месяцев назад

GStreamer is a library for constructing graphs of media-handling compo ...

CVSS3: 9.8

EPSS: Низкий

BDU:2024-11292

10 месяцев назад

Уязвимость функции gst_matroska_demux_add_wvpk_header мультимедийного фреймворка Gstreamer, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

CVSS3: 8.4

EPSS: Низкий

SUSE-SU-2025:02058-1

около 2 месяцев назад

Security update for gstreamer-plugins-good

EPSS: Низкий

SUSE-SU-2025:02053-1

около 2 месяцев назад

Security update for gstreamer-plugins-good

EPSS: Низкий

RLSA-2024:11299

8 месяцев назад

Important: gstreamer1-plugins-good security update

EPSS: Низкий

ELSA-2024-11299

8 месяцев назад

ELSA-2024-11299: gstreamer1-plugins-good security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-11122

8 месяцев назад

ELSA-2024-11122: gstreamer1-plugins-good security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-11344

6 месяцев назад

ELSA-2024-11344: gstreamer1-plugins-base and gstreamer1-plugins-good security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2025:00063-1

около 2 месяцев назад

Security update for gstreamer-plugins-good

EPSS: Низкий

SUSE-SU-2025:02055-1

около 2 месяцев назад

Security update for gstreamer-plugins-good

EPSS: Низкий

ROS-20250121-12

7 месяцев назад

Множественные уязвимости gstreamer1-plugins-good

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-47540 GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.	CVSS3: 9.8	1% Низкий	8 месяцев назад
CVE-2024-47540 GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.	CVSS3: 8.8	1% Низкий	8 месяцев назад
CVE-2024-47540 GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.	CVSS3: 9.8	1% Низкий	8 месяцев назад
CVE-2024-47540 GStreamer is a library for constructing graphs of media-handling compo ...	CVSS3: 9.8	1% Низкий	8 месяцев назад
BDU:2024-11292 Уязвимость функции gst_matroska_demux_add_wvpk_header мультимедийного фреймворка Gstreamer, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании	CVSS3: 8.4	1% Низкий	10 месяцев назад
SUSE-SU-2025:02058-1 Security update for gstreamer-plugins-good			около 2 месяцев назад
SUSE-SU-2025:02053-1 Security update for gstreamer-plugins-good			около 2 месяцев назад
RLSA-2024:11299 Important: gstreamer1-plugins-good security update			8 месяцев назад
ELSA-2024-11299 ELSA-2024-11299: gstreamer1-plugins-good security update (IMPORTANT)			8 месяцев назад
ELSA-2024-11122 ELSA-2024-11122: gstreamer1-plugins-good security update (IMPORTANT)			8 месяцев назад
ELSA-2024-11344 ELSA-2024-11344: gstreamer1-plugins-base and gstreamer1-plugins-good security update (IMPORTANT)			6 месяцев назад
SUSE-SU-2025:00063-1 Security update for gstreamer-plugins-good			около 2 месяцев назад
SUSE-SU-2025:02055-1 Security update for gstreamer-plugins-good			около 2 месяцев назад
ROS-20250121-12 Множественные уязвимости gstreamer1-plugins-good	CVSS3: 9.8		7 месяцев назад

Уязвимостей на страницу