CVE-2017-5843 in GStreamerinfo

Summary

Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service (crash) via vectors involving stream tags, as demonstrated by 02785736.mxf.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

02/01/2017

Disclosure

02/09/2017

Moderation

VulDB entry created

Entries

1: VDB-96775

CPE

ready

CWE

CWE-416 (Confirmed)

CVSS

7.4

EPSS

0.07130

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-5843
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5843
CVE Details	https://www.cvedetails.com/cve/CVE-2017-5843/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!