📦 Gstreamer

A use-after-free vulnerability in GStreamer's Matroska demuxer allows reading freed memory when processing CodecPrivate elements. This can lead to crashes, information disclosure, or potentially code ...

This CVE describes an out-of-bounds read vulnerability in GStreamer's subtitle parsing function. Attackers could exploit this to read sensitive memory contents or potentially cause denial of service. ...

CVE-2024-47776 is an out-of-bounds read vulnerability in GStreamer's WAV file parser that occurs when processing malformed CUE chunks. This allows attackers to read beyond allocated memory buffers, po...

This vulnerability in GStreamer's qtdemux component allows integer underflow leading to heap corruption and arbitrary code execution. Attackers can exploit it by tricking users into opening malicious ...

A null pointer dereference vulnerability in GStreamer's GDK Pixbuf decoder can cause a segmentation fault when processing specially crafted media files. This leads to Denial of Service (DoS) by crashi...

This CVE describes an out-of-bounds read vulnerability in GStreamer's qtdemux component when parsing MP4 files. Attackers can craft malicious MP4 files that cause the application to read up to 8 bytes...

This CVE describes an out-of-bounds read vulnerability in GStreamer's audio channel discovery function. Attackers can trigger memory corruption by processing specially crafted media files, potentially...

This CVE describes an out-of-bounds write vulnerability in GStreamer's MP4 demuxer that allows attackers to write up to 3 bytes beyond allocated memory bounds. The vulnerability affects all systems us...

This CVE describes an integer overflow vulnerability in GStreamer's QtDemux component that can lead to out-of-bounds memory writes. Attackers can exploit this by crafting malicious media files to pote...

This vulnerability in GStreamer's isomp4 plugin allows heap buffer over-read when parsing malicious MP4 files, potentially exposing sensitive memory contents. It affects applications using GStreamer f...

This CVE describes a stack-based buffer overflow vulnerability in GStreamer's H266 codec parsing, specifically in SEI message handling. Attackers can exploit this to execute arbitrary code remotely by...

A stack-based buffer overflow vulnerability in GStreamer's H265 codec parser allows remote attackers to execute arbitrary code by sending specially crafted H265 video data. This affects any applicatio...

This CVE-2025-2759 vulnerability in GStreamer's installer allows local attackers to escalate privileges by exploiting incorrect folder permissions. Attackers need initial low-privileged access to exec...

This CVE describes an out-of-bounds read vulnerability in GStreamer's WAV file parser that occurs when processing malformed ADTL chunks. Attackers can exploit this to read up to 4GB of process memory ...

This vulnerability in GStreamer's QuickTime demuxer allows an out-of-bounds read when processing specially crafted media files. Attackers could exploit this to read up to 4GB of process memory or caus...

A null pointer dereference vulnerability in GStreamer's JPEG decoder can cause segmentation faults when processing malformed JPEG files. This leads to Denial of Service (DoS) by crashing applications ...

A null pointer dereference vulnerability in GStreamer's matroska demuxer can cause application crashes when processing specially crafted media files. This affects any application using GStreamer to ha...

This CVE describes an integer underflow vulnerability in GStreamer's qtdemux component that can lead to out-of-bounds memory reads. Attackers could exploit this by crafting malicious media files to ca...

This CVE describes an out-of-bounds write vulnerability in GStreamer's SSA subtitle parser. Attackers can exploit this by crafting malicious media files with malformed SSA override codes, potentially ...

This CVE describes an out-of-bounds read vulnerability in GStreamer's qtdemux component that occurs when parsing malformed media containers. Attackers can exploit this to read up to 4GB of process mem...

A stack-based buffer overflow vulnerability in GStreamer's AV1 video parser allows remote attackers to execute arbitrary code by providing specially crafted AV1 video files. This affects any applicati...

A stack-based buffer overflow vulnerability in GStreamer's AV1 video parser allows remote attackers to execute arbitrary code by crafting malicious AV1 video files. This affects any application using ...

This vulnerability allows remote attackers to execute arbitrary code by exploiting a heap-based buffer overflow in GStreamer's AV1 codec parser. Attackers can achieve remote code execution by tricking...

A stack-based buffer overflow vulnerability in GStreamer's H.265 video parsing allows remote attackers to execute arbitrary code by providing specially crafted video files. This affects any applicatio...

This CVE-2023-40474 vulnerability in GStreamer allows remote attackers to execute arbitrary code by exploiting an integer overflow when parsing malicious MXF video files. The vulnerability affects any...

This vulnerability in GStreamer's RealMedia file parser allows remote attackers to execute arbitrary code by exploiting an integer overflow when processing MDPR chunks. Any application using GStreamer...

This vulnerability allows remote attackers to execute arbitrary code by exploiting an integer overflow in GStreamer's FLAC file parser. Attackers can craft malicious FLAC files that trigger buffer all...

This vulnerability allows remote attackers to execute arbitrary code by exploiting a heap-based buffer overflow in GStreamer's SRT subtitle file parser. Attackers can achieve remote code execution by ...

This CVE describes an integer overflow vulnerability in the qtdemux element of GStreamer when processing zlib-compressed data. It can cause denial of service (segfault) or potentially heap overwrite l...

CVE-2022-1924 is an integer overflow vulnerability in the GStreamer multimedia framework's Matroska demuxer during LZO decompression. This can cause denial of service (segfault) or potentially heap ov...

This CVE describes an integer overflow vulnerability in the matroskademux element of GStreamer's gst_matroska_demux_add_wvpk_header function. When parsing specially crafted Matroska files, it can lead...

CVE-2022-1922 is an integer overflow vulnerability in GStreamer's Matroska demuxer that can cause denial of service or potential heap overwrite during MKV file processing. The vulnerability occurs dur...

This vulnerability in GStreamer's Matroska demuxer allows attackers to trigger use-after-free conditions by processing specially crafted media files. Successful exploitation could lead to arbitrary co...

This vulnerability in GStreamer's isomp4 plugin allows attackers to read beyond allocated heap buffer boundaries when parsing malicious MP4 files. This can lead to memory disclosure and potential info...

A NULL pointer dereference vulnerability in GStreamer's subparse plugin allows attackers to cause denial of service by crashing applications that process malicious subtitle files. This affects any app...

A NULL pointer dereference vulnerability in GStreamer's subparse plugin can cause application crashes when processing malicious subtitle files. This affects applications using GStreamer for media play...