Количество 11
Количество 11
BDU:2024-11326
Уязвимость функции qtdemux_parse_container мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-47543
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10.
CVE-2024-47543
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10.
CVE-2024-47543
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10.
CVE-2024-47543
GStreamer is a library for constructing graphs of media-handling compo ...
ROS-20250121-12
Множественные уязвимости gstreamer1-plugins-good
ELSA-2025-7242
ELSA-2025-7242: gstreamer1-plugins-good security update (MODERATE)
SUSE-SU-2025:0063-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0067-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0064-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0055-1
Security update for gstreamer-plugins-good
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-11326 Уязвимость функции qtdemux_parse_container мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 9 месяцев назад |
 | CVE-2024-47543 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47543 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10. | CVSS3: 5.1 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47543 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in qtdemux_parse_container function within qtdemux.c. In the parent function qtdemux_parse_node, the value of length is not well checked. So, if length is big enough, it causes the pointer end to point beyond the boundaries of buffer. Subsequently, in the qtdemux_parse_container function, the while loop can trigger an OOB-read, accessing memory beyond the bounds of buf. This vulnerability can result in reading up to 4GB of process memory or potentially causing a segmentation fault (SEGV) when accessing invalid memory. This vulnerability is fixed in 1.24.10. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
| CVE-2024-47543 GStreamer is a library for constructing graphs of media-handling compo ... | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | ROS-20250121-12 Множественные уязвимости gstreamer1-plugins-good | CVSS3: 9.8 | 5 месяцев назад | |
| ELSA-2025-7242 ELSA-2025-7242: gstreamer1-plugins-good security update (MODERATE) | около 1 месяца назад | ||
 | SUSE-SU-2025:0063-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0067-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0064-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0055-1 Security update for gstreamer-plugins-good | 5 месяцев назад |
Уязвимостей на страницу