Vulnerabilities > Gstreamer > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-26 | CVE-2024-40897 | Out-of-bounds Write vulnerability in Gstreamer ORC Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. | 6.7 |
| 2017-01-13 | CVE-2016-9813 | NULL Pointer Dereference vulnerability in Gstreamer The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. | 4.3 |
| 2017-01-13 | CVE-2016-9812 | Out-of-bounds Read vulnerability in Gstreamer The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section. | 5.0 |
| 2017-01-13 | CVE-2016-9811 | Out-of-bounds Read vulnerability in multiple products The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ico file. | 4.7 |
| 2017-01-13 | CVE-2016-9810 | Out-of-bounds Read vulnerability in Gstreamer The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which triggers an incorrect unref call. | 4.3 |
| 2017-01-13 | CVE-2016-9809 | Out-of-bounds Read vulnerability in Gstreamer Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read. | 6.8 |
| 2017-01-13 | CVE-2016-9808 | Out-of-bounds Write vulnerability in Gstreamer The FLIC decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted series of skip and count pairs. | 5.0 |
| 2017-01-13 | CVE-2016-9807 | Out-of-bounds Read vulnerability in Gstreamer The flx_decode_chunks function in gst/flx/gstflxdec.c in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted FLIC file. | 4.3 |
| 2009-06-04 | CVE-2009-1932 | Numeric Errors vulnerability in Gstreamer Good Plug-Ins 0.10.15 Multiple integer overflows in the (1) user_info_callback, (2) user_endrow_callback, and (3) gst_pngdec_task functions (ext/libpng/gstpngdec.c) in GStreamer Good Plug-ins (aka gst-plugins-good or gstreamer-plugins-good) 0.10.15 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PNG file, which triggers a buffer overflow. | 6.8 |