FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gstreamer1-plugins -- multiple vulnerabilities

Affected packages
		gstreamer1-plugins	<	1.24.10

Details

VuXML ID	7256fae8-b3e8-11ef-b680-4ccc6adda413
Discovery	2024-12-03
Entry	2024-12-06

The GStreamer Security Center reports:

3 security bugs.

CVE-2024-47542: ID3v2 parser out-of-bounds read and NULL-pointer dereference

CVE-2024-47600: Out-of-bounds read in gst-discoverer-1.0 commandline tool

CVE-2024-47541: Out-of-bounds write in SSA subtitle parser

[source]

References

CVE Name	CVE-2024-47541
CVE Name	CVE-2024-47542
CVE Name	CVE-2024-47600
URL	https://gstreamer.freedesktop.org/security/sa-2024-0008.html
URL	https://gstreamer.freedesktop.org/security/sa-2024-0018.html
URL	https://gstreamer.freedesktop.org/security/sa-2024-0023.html