« List of all CVEs

CVE-2022-1920

Published: 7/19/2022 Last updated: 8/3/2024 Reserved: 5/27/2022

Integer overflow in matroskademux element in gst_matroska_demux_add_wvpk_header function which allows a heap overwrite while parsing matroska files. Potential for arbitrary code execution through heap overwrite.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (2)

conf-gstreamer gstreamer

Products affected (2)

Product Vendor Version
GStreamer n/a < 16.0.4131.2
GStreamer n/a <= *

References (12)