CVE-2026-46470
- EPSS 0.21%
- Veröffentlicht 14.05.2026 17:40:46
- Zuletzt bearbeitet 19.05.2026 16:34:36
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_audio_caps function does not sufficiently validate atom data before performing division operations, leading to denial of s...
CVE-2026-46469
- EPSS 0.1%
- Veröffentlicht 14.05.2026 17:38:44
- Zuletzt bearbeitet 19.05.2026 15:15:50
An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function does not sufficiently validate atom data before performing division operations, leading to denial of s...
CVE-2026-1940
- EPSS 0.23%
- Veröffentlicht 23.03.2026 21:26:14
- Zuletzt bearbeitet 04.05.2026 15:30:08
An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function. The patch added a size validation check lsize + 8 > size, but it does not account for the GST_ROUND_UP_2(lsize) used in the actual offset calcula...