gstreamer-0_10-plugins-bad (SUSE:Linux Enterprise Software Development Kit 12 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Software Development Kit 12 SP1 package gstreamer-0_10-plugins-bad, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2016-9447 — CVSS 7.8 (high): The ROM mappings in the NSF decoder in gstreamer 0.10.x allow remote attackers to cause a denial of service (out-of-bounds read or write)…
CVE-2016-9809 — CVSS 7.8 (high): Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via…
CVE-2016-9445 — CVSS 7.5 (high): Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and…
CVE-2016-9446 — CVSS 7.5 (high): The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as…