Vulnerabilities > Gstreamer Project > Gstreamer > 1.1.1

DATE CVE VULNERABILITY TITLE RISK
2022-07-19 CVE-2022-1920 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in matroskademux element in gst_matroska_demux_add_wvpk_header function which allows a heap overwrite while parsing matroska files.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-1921 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-1922 Integer Overflow or Wraparound vulnerability in multiple products
DOS / potential heap overwrite in mkv demuxing using zlib decompression.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-1923 Integer Overflow or Wraparound vulnerability in multiple products
DOS / potential heap overwrite in mkv demuxing using bzip decompression.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-1924 Integer Overflow or Wraparound vulnerability in multiple products
DOS / potential heap overwrite in mkv demuxing using lzo decompression.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-1925 Integer Overflow or Wraparound vulnerability in multiple products
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2022-07-19 CVE-2022-2122 Integer Overflow or Wraparound vulnerability in multiple products
DOS / potential heap overwrite in qtdemux using zlib decompression.
local
low complexity
gstreamer-project debian CWE-190
7.8
7.8
2021-06-02 CVE-2021-3522 Out-of-bounds Read vulnerability in multiple products
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
local
low complexity
gstreamer-project netapp oracle CWE-125
5.5
5.5
2021-04-19 CVE-2021-3498 Out-of-bounds Write vulnerability in multiple products
GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
local
low complexity
gstreamer-project redhat debian CWE-787
7.8
7.8
2021-04-19 CVE-2021-3497 Use After Free vulnerability in multiple products
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.
local
low complexity
gstreamer-project redhat debian CWE-416
7.8
7.8