A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HFreedesktop Gst Plugins Bad
APPFreedesktop< 1.18.1
Related vulnerabilities
nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a comparison for a symbol name from the strin...
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified i...
An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-...
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject ude...