CVE-2025-47808

Published: 8/7/2025 Last updated: 8/7/2025 Reserved: 5/10/2025

In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5.6	Medium	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Opam packages affected (2)

conf-gstreamer gstreamer

Products affected (1)

Product	Vendor	Version
n/a	n/a	n/a

References (2)

https://gstreamer.freedesktop.org/security/
https://github.com/atredispartners/advisories/blob/master/2025/ATREDIS-2025-0003.md