Количество 11
Количество 11
BDU:2024-11329
Уязвимость функции parse_ds64 мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-47775
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10.
CVE-2024-47775
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10.
CVE-2024-47775
GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10.
CVE-2024-47775
GStreamer is a library for constructing graphs of media-handling compo ...
ROS-20250121-12
Множественные уязвимости gstreamer1-plugins-good
ELSA-2025-7242
ELSA-2025-7242: gstreamer1-plugins-good security update (MODERATE)
SUSE-SU-2025:0063-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0067-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0064-1
Security update for gstreamer-plugins-good
SUSE-SU-2025:0055-1
Security update for gstreamer-plugins-good
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-11329 Уязвимость функции parse_ds64 мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 9.1 | 0% Низкий | 9 месяцев назад |
 | CVE-2024-47775 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10. | CVSS3: 9.1 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47775 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10. | CVSS3: 5.1 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47775 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been found in the parse_ds64 function within gstwavparse.c. The parse_ds64 function does not check that the buffer buf contains sufficient data before attempting to read from it, doing multiple GST_READ_UINT32_LE operations without performing boundary checks. This can lead to an OOB-read when buf is smaller than expected. This vulnerability allows reading beyond the bounds of the data buffer, potentially leading to a crash (denial of service) or the leak of sensitive data. This vulnerability is fixed in 1.24.10. | CVSS3: 9.1 | 0% Низкий | 6 месяцев назад |
| CVE-2024-47775 GStreamer is a library for constructing graphs of media-handling compo ... | CVSS3: 9.1 | 0% Низкий | 6 месяцев назад |
 | ROS-20250121-12 Множественные уязвимости gstreamer1-plugins-good | CVSS3: 9.8 | 5 месяцев назад | |
| ELSA-2025-7242 ELSA-2025-7242: gstreamer1-plugins-good security update (MODERATE) | около 1 месяца назад | ||
 | SUSE-SU-2025:0063-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0067-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0064-1 Security update for gstreamer-plugins-good | 5 месяцев назад | ||
| SUSE-SU-2025:0055-1 Security update for gstreamer-plugins-good | 5 месяцев назад |
Уязвимостей на страницу