pkg:Debian/gst-plugins-good1.0

All known vulnerabilities

• CRITICAL9.8CVE-2024-47613GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8CVE-2024-47606gstreamer1.0 - security update
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8CVE-2024-47540GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8gst-plugins-good1.0 - security update
  from 0, < 1.22.0-5+deb12u2
• CRITICAL9.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.8Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allow…
  from 0, < 1.10.1-2
• CRITICAL9.8Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allow…
  from 0, < 1.10.1-2
• CRITICAL9.8gst-plugins-good0.10 - security update
  from 0, < 1.10.1-2
• CRITICAL9.8gst-plugins-good0.10 - security update
  from 0, < 1.4.4-2+deb8u2
• CRITICAL9.1An issue was discovered in GStreamer gst-plugins-good before 1.28.2.
  from 0
• CRITICAL9.1GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GHSL-2024-259: GStreamer has an OOB-read in gst_wavparse_smpl_chunk
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GHSL-2024-260: GStreamer has a OOB-read in gst_wavparse_cue_chunk
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GHSL-2024-261: GStreamer has an OOB-read in parse_ds64
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• CRITICAL9.1GHSL-2024-245: GStreamer has an OOB-read in qtdemux_parse_samples
  from 0, < 1.18.4-2+deb11u3
• HIGH8.8GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability.
  from 0
• HIGH8.8GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability.
  from 0
• HIGH8.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u2
• HIGH8.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u2
• HIGH8.8gst-plugins-good1.0 - security update
  from 0, < 1.14.4-1+deb10u3
• HIGH8.1In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 fi…
  from 0, < 1.18.4-2+deb11u4
• HIGH7.8DOS / potential heap overwrite in qtdemux using zlib decompression.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8DOS / potential heap overwrite in mkv demuxing using lzo decompression.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8DOS / potential heap overwrite in mkv demuxing using bzip decompression.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8DOS / potential heap overwrite in mkv demuxing using zlib decompression.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files.
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.14.4-1+deb10u2
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u1
• HIGH7.8GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
  from 0, < 1.18.4-2
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.14.4-1+deb10u1
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2
• HIGH7.8gst-plugins-good1.0 - security update
  from 0, < 1.10.4-1+deb9u1
• HIGH7.5An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function.
  from 0
• HIGH7.5GHSL-2024-258: GStreamer has an OOB-read in gst_wavparse_adtl_chunk
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GHSL-2024-244: GStreamer has an OOB-read in FOURCC_SMI_ parsing
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GHSL-2024-243: GStreamer has an integer underflow in extract_cc_from_data leading to OOB-read
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GHSL-2024-242: GStreamer has an integer underflow in FOURCC_strf parsing leading to OOB-read
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GHSL-2024-238: GStreamer has NULL-pointer dereferences in MP4/MOV demuxer CENC handling
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5GStreamer is a library for constructing graphs of media-handling components.
  from 0, < 1.18.4-2+deb11u3
• HIGH7.5The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to ca…
  from 0, < 1.10.3-1
• HIGH7.5The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to ca…
  from 0, < 1.10.3-1
• HIGH7.5The qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause…
  from 0, < 1.10.3-1
• HIGH7.5The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cau…
  from 0, < 1.10.3-1
• HIGH7.5The FLIC decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a craf…
  from 0, < 1.10.1-2
• MEDIUM6.6gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u4
• MEDIUM6.6gst-plugins-good1.0 - security update
  from 0, < 1.18.4-2+deb11u4
• MEDIUM5.5An issue was discovered in GStreamer gst-plugins-good before 1.28.2.
  from 0
• MEDIUM5.5gst-plugins-good1.0 - security update
  from 0, < 1.10.3-1
• MEDIUM5.5gst-plugins-good1.0 - security update
  from 0, < 1.4.4-2+deb8u3
• MEDIUM5.5The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to…
  from 0, < 1.10.1-2
• MEDIUM5.5The flx_decode_chunks function in gst/flx/gstflxdec.c in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (inva…
  from 0, < 1.10.1-2
• —(no summary)
  from 0