Description
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
Related CPE's
Vulnerable
a
netapp
active_iq_unified_manager
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
a
netapp
snapmanager
2
References
https://bugzilla.redhat.com/show_bug.cgi?id=1954761
Issue TrackingThird Party Advisory
https://security.gentoo.org/glsa/202208-31
Third Party Advisory
https://security.netapp.com/advisory/ntap-20211022-0004/
Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2021.html
PatchThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-06-02T15:15:07.857
4 years agoLast modified
2022-09-28T20:02:12.290
2 years ago