Lucene search
UbuntuUSN-6526-1HistoryNov 29, 2023 - 12:00 a.m.
GStreamer Bad Plugins vulnerabilities
2023-11-2900:00:00
ubuntu.com
40
gstreamer
ubuntu
remote attack
denial of service
arbitrary code execution
media files
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
16.2%
Releases
- Ubuntu 23.10
- Ubuntu 23.04
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- gst-plugins-bad1.0 - GStreamer plugins
Details
It was discovered that GStreamer Bad Plugins incorrectly handled certain
media files. A remote attacker could use this issue to cause GStreamer
Bad Plugins to crash, resulting in a denial of service, or possibly
execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | gstreamer1.0-plugins-bad | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gir1.2-gst-plugins-bad-1.0 | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gstreamer1.0-opencv | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gstreamer1.0-opencv-dbgsym | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gstreamer1.0-plugins-bad-apps | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gstreamer1.0-plugins-bad-apps-dbgsym | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gstreamer1.0-plugins-bad-dbgsym | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgstreamer-opencv1.0-0 | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgstreamer-opencv1.0-0-dbgsym | < 1.22.4-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgstreamer-plugins-bad1.0-0 | < 1.22.4-1ubuntu1.1 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-6526-1)
2023-11-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4971-1)
2023-12-26 00:00:00
Debian: Security Advisory (DLA-3633-1)
2023-10-30 00:00:00
osv
osv
gst-plugins-bad1.0 vulnerabilities
2023-11-29 17:48:53
gst-plugins-bad1.0 - security update
2023-10-24 00:00:00
gst-plugins-bad1.0 - security update
2023-10-28 00:00:00
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : GStreamer Bad Plugins vulnerabilities (USN-6526-1)
2023-11-29 00:00:00
GLSA-202406-06 : GStreamer, GStreamer Plugins: Multiple Vulnerabilities
2024-06-29 00:00:00
RHEL 6 : gstreamer-plugins-bad (Unpatched Vulnerability)
2024-05-11 00:00:00
gentoo
gentoo
GStreamer, GStreamer Plugins: Multiple Vulnerabilities
2024-06-28 00:00:00
debian
debian
[SECURITY] [DSA 5533-1] gst-plugins-bad1.0 security update
2023-10-24 20:58:56
[SECURITY] [DLA 3633-1] gst-plugins-bad1.0 security update
2023-10-28 12:08:28
[SECURITY] [DSA 5565-1] gst-plugins-bad1.0 security update
2023-11-25 14:46:20
oraclelinux
oraclelinux
gstreamer1-plugins-bad-free security update
2024-05-23 00:00:00
gstreamer1-plugins-bad-free security update
2024-05-02 00:00:00
gstreamer1-plugins-bad-free security update
2023-12-15 00:00:00
rocky
rocky
gstreamer1-plugins-bad-free security update
2024-06-14 13:59:30
gstreamer1-plugins-bad-free security update
2024-05-10 14:32:38
gstreamer1-plugins-bad-free security update
2024-01-09 04:07:10
almalinux
almalinux
Moderate: gstreamer1-plugins-bad-free security update
2024-05-22 00:00:00
Moderate: gstreamer1-plugins-bad-free security update
2024-04-30 00:00:00
Important: gstreamer1-plugins-bad-free security update
2023-12-13 00:00:00
amazon
amazon
Important: gstreamer1-plugins-bad-free
2023-10-12 15:09:00
Important: gstreamer1-plugins-bad-free
2023-11-29 22:19:00
redhat
redhat
(RHSA-2024:3060) Moderate: gstreamer1-plugins-bad-free security update
2024-05-22 06:35:29
(RHSA-2024:2287) Moderate: gstreamer1-plugins-bad-free security update
2024-04-30 06:15:16
(RHSA-2023:7792) Important: gstreamer1-plugins-bad-free security update
2023-12-13 16:00:51
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0167
2023-12-12 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0145
2023-11-17 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0523
2023-12-01 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2357
2024-02-20 10:26:09
fedora
fedora
[SECURITY] Fedora 39 Update: gstreamer1-plugins-good-1.22.7-1.fc39
2023-11-19 01:26:32
[SECURITY] Fedora 39 Update: gstreamer1-plugins-base-1.22.7-1.fc39
2023-11-19 01:26:32
[SECURITY] Fedora 39 Update: gstreamer1-plugin-libav-1.22.7-1.fc39
2023-11-19 01:26:31
mageia
mageia
Updated gstreamer packages fix many security vulnerabilities
2023-12-22 14:04:51
redhatcve
redhatcve
alpinelinux
alpinelinux
redos
redos
ROS-20230915-11
2023-09-15 00:00:00
vulnrichment
vulnrichment
nvd
nvd
zdi
zdi
debiancve
debiancve
cvelist
cvelist
ubuntucve
ubuntucve
veracode
veracode
Heap-based Buffer Overflow
2023-11-30 18:06:48
Use After Free
2023-11-30 18:06:34
Integer Overflow
2023-11-30 16:32:06
cve
cve
centos
centos
gstreamer security update
2024-01-26 18:07:56
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
16.2%
Related for USN-6526-1