CVE-2026-46470
- EPSS 0.21%
- Veröffentlicht 14.05.2026 17:40:46
- Zuletzt bearbeitet 19.05.2026 16:34:36
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_audio_caps function does not sufficiently validate atom data before performing division operations, leading to denial of s...
CVE-2026-46469
- EPSS 0.1%
- Veröffentlicht 14.05.2026 17:38:44
- Zuletzt bearbeitet 19.05.2026 15:15:50
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function does not sufficiently validate atom data before performing division operations, leading to denial of s...
CVE-2009-1932
- EPSS 5.47%
- Veröffentlicht 04.06.2009 20:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:22
Multiple integer overflows in the (1) user_info_callback, (2) user_endrow_callback, and (3) gst_pngdec_task functions (ext/libpng/gstpngdec.c) in GStreamer Good Plug-ins (aka gst-plugins-good or gstreamer-plugins-good) 0.10.15 allow remote attackers ...
CVE-2009-0397
- EPSS 7.15%
- Veröffentlicht 03.02.2009 11:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:57
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to ...
CVE-2009-0386
- EPSS 7.15%
- Veröffentlicht 02.02.2009 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:56
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 might allow remote attackers to execute arbitrary code via crafted Composition Time To ...
CVE-2009-0387
- EPSS 6.48%
- Veröffentlicht 02.02.2009 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:56
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute ar...