Back to search
CVE-2017-5846
Published: Feb 9, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
The gst_asf_demux_process_ext_stream_props function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors related to the number of languages in a video file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
96001
vdb-entry
x_refsource_BID
https://bugzilla.gnome.org/show_bug.cgi?id=777937
x_refsource_CONFIRM
DSA-3821
vendor-advisory
x_refsource_DEBIAN
[oss-security] 20170202 Re: Multiple memory access issues in gstreamer
mailing-list
x_refsource_MLIST
https://gstreamer.freedesktop.org/releases/1.10/#1.10.3
x_refsource_CONFIRM
GLSA-201705-10
vendor-advisory
x_refsource_GENTOO
[oss-security] 20170201 Multiple memory access issues in gstreamer
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20200530 [SECURITY] [DLA 2226-1] gst-plugins-ugly0.10 security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now