Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Workstation Extension 15 SP7 package gstreamer-plugins-good, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2024-47540 — CVSS 9.8 (critical): GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been…
CVE-2025-47219 — CVSS 8.1 (high): In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4…
CVE-2025-47183 — CVSS 6.6 (medium): In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4…