Количество 14
Количество 14
BDU:2024-11336
Уязвимость функции gst_opus_dec_parse_header мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-47607
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10.
CVE-2024-47607
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10.
CVE-2024-47607
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10.
CVE-2024-47607
GStreamer is a library for constructing graphs of media-handling compo ...
ROS-20250121-12
Множественные уязвимости gstreamer1-plugins-good
RLSA-2024:11345
Important: gstreamer1-plugins-base security update
ELSA-2024-11345
ELSA-2024-11345: gstreamer1-plugins-base security update (IMPORTANT)
ELSA-2024-11123
ELSA-2024-11123: gstreamer1-plugins-base security update (IMPORTANT)
SUSE-SU-2025:0069-1
Security update for gstreamer-plugins-base
SUSE-SU-2025:0065-1
Security update for gstreamer-plugins-base
SUSE-SU-2025:0054-1
Security update for gstreamer-plugins-base
SUSE-SU-2025:0052-1
Security update for gstreamer-plugins-base
ELSA-2024-11344
ELSA-2024-11344: gstreamer1-plugins-base and gstreamer1-plugins-good security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-11336 Уязвимость функции gst_opus_dec_parse_header мультимедийного фреймворка Gstreamer, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 9.8 | 0% Низкий | 9 месяцев назад |
 | CVE-2024-47607 GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10. | CVSS3: 9.8 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47607 GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10. | CVSS3: 9.8 | 0% Низкий | 6 месяцев назад |
 | CVE-2024-47607 GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10. | CVSS3: 9.8 | 0% Низкий | 6 месяцев назад |
| CVE-2024-47607 GStreamer is a library for constructing graphs of media-handling compo ... | CVSS3: 9.8 | 0% Низкий | 6 месяцев назад |
 | ROS-20250121-12 Множественные уязвимости gstreamer1-plugins-good | CVSS3: 9.8 | 5 месяцев назад | |
 | RLSA-2024:11345 Important: gstreamer1-plugins-base security update | 6 месяцев назад | ||
| ELSA-2024-11345 ELSA-2024-11345: gstreamer1-plugins-base security update (IMPORTANT) | 6 месяцев назад | ||
| ELSA-2024-11123 ELSA-2024-11123: gstreamer1-plugins-base security update (IMPORTANT) | 6 месяцев назад | ||
 | SUSE-SU-2025:0069-1 Security update for gstreamer-plugins-base | 5 месяцев назад | ||
| SUSE-SU-2025:0065-1 Security update for gstreamer-plugins-base | 5 месяцев назад | ||
| SUSE-SU-2025:0054-1 Security update for gstreamer-plugins-base | 5 месяцев назад | ||
| SUSE-SU-2025:0052-1 Security update for gstreamer-plugins-base | 5 месяцев назад | ||
| ELSA-2024-11344 ELSA-2024-11344: gstreamer1-plugins-base and gstreamer1-plugins-good security update (IMPORTANT) | 5 месяцев назад |
Уязвимостей на страницу