VulnerableCode Package Details - pkg:deb/ubuntu/gst-plugins-bad1.0@1.10.3-1ubuntu1

Search for packages

Package details: pkg:deb/ubuntu/gst-plugins-bad1.0@1.10.3-1ubuntu1

Essentials
History (0)

purl	pkg:deb/ubuntu/gst-plugins-bad1.0@1.10.3-1ubuntu1

Next non-vulnerable version	1.14.1-1ubuntu1~ubuntu18.04.1
Latest non-vulnerable version	1.14.1-1ubuntu1~ubuntu18.04.1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-ty7z-bdnw-aaap Aliases: CVE-2017-5848	The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.	1.14.1-1ubuntu1~ubuntu18.04.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-9ew5-g1xr-aaad	Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service (crash) via vectors involving stream tags, as demonstrated by 02785736.mxf.	CVE-2017-5843

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version