Lucene search
Veracode Vulnerability DatabaseVERACODE:17678HistoryMay 02, 2019 - 5:51 a.m.
Memory Corruption
2019-05-0205:51:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
EPSS
0.018
Percentile
88.2%
gstreamer is vulnerable to memory corruption. A remote attacker could use the flawed GStreamer's Nintendo NSF music file format decoding plug-in to cause an application crash or, potentially, execute arbitrary code with the privileges of the user running the application.
References
rhn.redhat.com/errata/RHSA-2016-2974.html
rhn.redhat.com/errata/RHSA-2017-0018.html
scarybeastsecurity.blogspot.de/2016/11/0day-exploit-compromising-linux-desktop.html
www.openwall.com/lists/oss-security/2016/11/18/12
www.openwall.com/lists/oss-security/2016/11/18/13
www.securityfocus.com/bid/94427
access.redhat.com/errata/RHSA-2016:2974
access.redhat.com/security/updates/classification/#important
security.gentoo.org/glsa/201705-10
Related
openvas
openvas
Fedora Update for gstreamer-plugins-bad-free FEDORA-2016-a3bc78de2b
2016-12-16 00:00:00
Debian: Security Advisory (DSA-3713-1)
2016-11-14 00:00:00
Fedora Update for gstreamer-plugins-bad-free FEDORA-2016-fdedfc86d0
2016-12-07 00:00:00
cve
cve
CVE-2016-9447
2017-01-23 21:59:03
prion
prion
Out-of-bounds
2017-01-23 21:59:00
osv
osv
CVE-2016-9447
2017-01-23 21:59:03
gst-plugins-bad0.10 - security update
2016-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: gstreamer-plugins-bad-free-0.10.23-34.fc25
2016-12-05 21:48:16
[SECURITY] Fedora 24 Update: gstreamer-plugins-bad-free-0.10.23-34.fc24
2016-12-16 03:55:30
ubuntucve
ubuntucve
CVE-2016-9447
2017-01-23 00:00:00
nessus
nessus
Fedora 25 : gstreamer-plugins-bad-free (2016-fdedfc86d0)
2016-12-06 00:00:00
Oracle Linux 6 : gstreamer-plugins-bad-free (ELSA-2016-2974)
2016-12-22 00:00:00
RHEL 6 : gstreamer-plugins-bad-free (RHSA-2016:2974)
2016-12-21 00:00:00
cvelist
cvelist
CVE-2016-9447
2017-01-23 21:00:00
redhatcve
redhatcve
CVE-2016-9447
2016-11-21 07:17:24
nvd
nvd
CVE-2016-9447
2017-01-23 21:59:03
oraclelinux
oraclelinux
gstreamer-plugins-bad-free security update
2016-12-21 00:00:00
gstreamer-plugins-bad-free security update
2017-01-05 00:00:00
redhat
redhat
(RHSA-2016:2974) Important: gstreamer-plugins-bad-free security update
2016-12-21 11:38:13
(RHSA-2017:0018) Moderate: gstreamer-plugins-bad-free security update
2017-01-05 08:42:29
centos
centos
gstreamer security update
2016-12-21 17:41:28
gstreamer security update
2017-01-09 18:12:36
debian
debian
[SECURITY] [DLA 712-1] gst-plugins-bad0.10 security update
2016-11-19 23:56:32
mageia
mageia
gentoo
gentoo
GStreamer plug-ins: User-assisted execution of arbitrary code
2017-05-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1850
2021-07-02 17:03:31