Home › Packages › AlmaLinux:10 › gstreamer1-plugins-bad-freegstreamer1-plugins-bad-free (AlmaLinux:10) — known CVEs & security advisories Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:10 package gstreamer1-plugins-bad-free, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (8) CVE-2025-3887 — CVSS 8.8 (high) : GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to…CVE-2026-3083 — CVSS 8.8 (high) : GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…CVE-2026-3085 — CVSS 8.8 (high) : GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to…CVE-2026-2922 — CVSS 7.8 (high) : GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…CVE-2026-2923 — CVSS 7.8 (high) : GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…CVE-2026-3082 — CVSS 7.8 (high) : GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…CVE-2026-2920 — CVSS 7.8 (high) : GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…CVE-2026-2921 — CVSS 7.8 (high) : GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…