Information on source package gst-plugins-bad0.10

Available versions

ReleaseVersion
jessie0.10.23-7.4+deb8u5

Open issues

BugjessieDescription
TEMP-0000000-59D7FFvulnerableAV1 codec parser buffer overflow
CVE-2024-0444vulnerableGStreamer-SA-2024-0001: AV1 codec parser potential buffer overflow during tile list parsing
CVE-2023-44446vulnerableMXF demuxer use-after-free
CVE-2023-44429vulnerableAV1 codec parser buffer overflow
CVE-2023-40476vulnerableInteger overflow in H.265 video parser leading to stack overwrite
CVE-2023-40475vulnerableInteger overflow leading to heap overwrite in MXF file handling with AES3 audio
CVE-2023-40474vulnerableInteger overflow leading to heap overwrite in MXF file handling with uncompressed video
CVE-2023-37329vulnerableHeap overwrite in PGS subtitle overlay decoder

Resolved issues

BugDescription
TEMP-0000000-C6AAE1Catch overflows in AVC/HEVC NAL unit length calculations
CVE-2021-3185A flaw was found in the gstreamer h264 component of gst-plugins-bad be ...
CVE-2017-5848The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in ...
CVE-2017-5843Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unr ...
CVE-2016-9813The _parse_pat function in the mpegts parser in GStreamer before 1.10. ...
CVE-2016-9812The gst_mpegts_section_new function in the mpegts decoder in GStreamer ...
CVE-2016-9809Off-by-one error in the gst_h264_parse_set_caps function in GStreamer ...
CVE-2016-9447The ROM mappings in the NSF decoder in gstreamer 0.10.x allow remote a ...
CVE-2016-9446The vmnc decoder in the gstreamer does not initialize the render canva ...
CVE-2016-9445Integer overflow in the vmnc decoder in the gstreamer allows remote at ...
CVE-2015-0797GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefo ...
CVE-2009-1513Buffer overflow in the PATinst function in src/load_pat.cpp in libmodp ...
CVE-2009-1438Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp ...
CVE-2009-0398Array index error in the gst_qtp_trak_handler function in gst/qtdemux/ ...
CVE-2009-0397Heap-based buffer overflow in the qtdemux_parse_samples function in gs ...
CVE-2009-0387Array index error in the qtdemux_parse_samples function in gst/qtdemux ...
CVE-2009-0386Heap-based buffer overflow in the qtdemux_parse_samples function in gs ...
CVE-2006-4192Multiple buffer overflows in MODPlug Tracker (OpenMPT) 1.17.02.43 and ...

Security announcements

DSA / DLADescription
ELA-486-1gst-plugins-bad0.10 - security update
ELA-417-1gst-plugins-bad0.10 - security update
DLA-2164-1gst-plugins-bad0.10 - security update
DLA-830-1gst-plugins-bad0.10 - security update
DLA-736-1gst-plugins-bad0.10 - security update
DLA-712-1gst-plugins-bad0.10 - security update
DSA-3717-1gst-plugins-bad1.0 - security update
DSA-3713-1gst-plugins-bad0.10 - security update
DSA-3225-1gst-plugins-bad0.10 - security update
DSA-1851-1gst-plugins-bad0.10 - arbitrary code execution
DSA-1729-1gst-plugins-bad0.10 - multiple vulnerabilities

Search for package or bug name: Reporting problems