Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

11 – 16 of 16 results

CVE-2017-5843

Low priority

Some fixes available 1 of 5

Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Not affected Not affected Not affected Not affected Vulnerable
Show less packages

CVE-2016-9446

Medium priority
Fixed

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated...

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release
gst-plugins-bad1.0 Fixed
Show less packages

CVE-2016-9445

Medium priority
Fixed

Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release
gst-plugins-bad1.0 Fixed
Show less packages

CVE-2016-9813

Low priority

Some fixes available 15 of 18

The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Fixed Fixed Fixed Fixed Vulnerable
Show less packages

CVE-2016-9812

Low priority

Some fixes available 15 of 18

The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Fixed Fixed Fixed Fixed Vulnerable
Show less packages

CVE-2016-9809

Low priority

Some fixes available 16 of 20

Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read.

2 affected packages

gst-plugins-bad0.10, gst-plugins-bad1.0

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-bad0.10 Not in release Not in release Not in release Not in release Not in release
gst-plugins-bad1.0 Fixed Fixed Fixed Fixed Vulnerable
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. Next page
Export to JSON