CVE-2024-47615

GHSL-2024-117: GStreamer has an out-of-bounds write in Ogg demuxer

Published: 12/11/2024 Last updated: 12/12/2024 Reserved: 9/27/2024

GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function gst_parse_vorbis_setup_packet within vorbis_parse.c. The integer size is read from the input file without proper validation. As a result, size can exceed the fixed size of the pad->vorbis_mode_sizes array (which size is 256). When this happens, the for loop overwrites the entire pad structure with 0s and 1s, affecting adjacent memory as well. This OOB-write can overwrite up to 380 bytes of memory beyond the boundaries of the pad->vorbis_mode_sizes array. This vulnerability is fixed in 1.24.10.

CNA assigner: GitHub_M (a0819718-46f1-4df5-94e2-005712e83aaa) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
4.0	8.6	High	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Opam packages affected (2)

conf-gstreamer gstreamer

Products affected (1)

Product	Vendor	Version
gstreamer	gstreamer	7.2.0.1

CVE-2024-47615

GHSL-2024-117: GStreamer has an out-of-bounds write in Ogg demuxer

Metrics

Opam packages affected (2)

Products affected (1)

References (3)