Search for packages
| purl | pkg:deb/ubuntu/gst-plugins-bad1.0@1.10.2-1ubuntu1 |
| Next non-vulnerable version | 1.14.1-1ubuntu1~ubuntu18.04.1 |
| Latest non-vulnerable version | 1.14.1-1ubuntu1~ubuntu18.04.1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9ew5-g1xr-aaad
Aliases: CVE-2017-5843 |
Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service (crash) via vectors involving stream tags, as demonstrated by 02785736.mxf. |
Affected by 1 other vulnerability. |
|
VCID-ty7z-bdnw-aaap
Aliases: CVE-2017-5848 |
The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1a1m-8pd2-aaad | The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. |
CVE-2016-9813
|
| VCID-k77j-qzes-aaar | The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section. |
CVE-2016-9812
|
| VCID-qzqv-phh1-aaak | Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read. |
CVE-2016-9809
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|