CVE-2024-47540
published 2024-12-12CVE-2024-47540: GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the…
PriorityP258critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.00%
58.3th percentile
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gst-plugins-good1.0 | < gst-plugins-good1.0 1.22.0-5+deb12u2 (bookworm) | gst-plugins-good1.0 1.22.0-5+deb12u2 (bookworm) |
| gstreamer | gstreamer | < 1.24.10 | 1.24.10 |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerability is triggered in the `gst_matroska_demux_add_wvpk_header` function within `matroska-demux.c` — monitor for crashes or unexpected execution flow when processing Matroska/WebM files via GStreamer's Matroska/WebM demuxer. ↗
- →Monitor application crashes when processing Matroska/WebM files as a potential indicator of exploitation attempts against this uninitialized stack memory vulnerability. ↗
- →The exploit vector requires a specially crafted Matroska/WebM input file — treat any unexpected Matroska/WebM file from untrusted sources as a potential attack artifact. ↗
- ·Vulnerability is fixed in GStreamer 1.24.10; any deployment running an earlier version of gstreamer1-plugins-good is affected. Patch to 1.24.10 or the relevant distro backport. ↗
- ·Debian-specific fixed versions vary by release: bookworm fixed in 1.22.0-5+deb12u2, bullseye fixed in 1.18.4-2+deb11u3, forky/sid/trixie fixed in 1.24.10-1. ↗
- ·Exploitation requires user interaction — an attacker must trick a user into opening or processing a specially crafted file. Scope is rated local. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.08.6HIGHCVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv8.6HIGH
vendor_debian8.6HIGH
vendor_redhat8.6HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
GStreamer Good Plugins vulnerabilities
vendor_ubuntu·2024-12-18
CVE-2024-47537 GStreamer Good Plugins vulnerabilities
Title: GStreamer Good Plugins vulnerabilities
Summary: GStreamer Good Plugins could be made to crash or run programs as your login
if it opened a specially crafted file.
Antonio Morales discovered that GStreamer Good Plugins incorrectly handled
certain malformed media files. An attacker could use these issues to cause
GStreamer Good Plugins to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer
vendor_redhat·2024-12-11·CVSS 8.6
CVE-2024-47540 [HIGH] CWE-457 gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer
gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.
A flaw was found in the Matroska/WebM demuxer in the GStreamer library. Processing a specially crafted input file can cause the usage of uninitialized stack memory, allowing calls to uninitialized function pointers, potentially resulting in code execution or an application crash.
St
Debian
CVE-2024-47540: gst-plugins-good1.0 - GStreamer is a library for constructing graphs of media-handling components. An ...
vendor_debian·2024·CVSS 8.6
CVE-2024-47540 [HIGH] CVE-2024-47540: gst-plugins-good1.0 - GStreamer is a library for constructing graphs of media-handling components. An ...
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.
Scope: local
bookworm: resolved (fixed in 1.22.0-5+deb12u2)
bullseye: resolved (fixed in 1.18.4-2+deb11u3)
forky: resolved (fixed in 1.24.10-1)
sid: resolved (fixed in 1.24.10-1)
trixie: resolved (fixed in 1.24.10-1)
OSV
CVE-2024-47540: GStreamer is a library for constructing graphs of media-handling components
osv·2024-12-12·CVSS 8.6
CVE-2024-47540 [HIGH] CVE-2024-47540: GStreamer is a library for constructing graphs of media-handling components
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.
No detection rules found.
No public exploits indexed.
2024-12-12
Published