Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-47606 (GCVE-0-2024-47606)
Vulnerability from cvelistv5 – Published: 2024-12-11 19:12 – Updated: 2025-11-03 20:39
VLAI
EPSS
Title
GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes
Summary
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the 'slice_size' variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem->allocator->mem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
6 references
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-47606",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-23T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-07-24T03:55:27.489Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-03T20:39:54.545Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20250418-0003/"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "gstreamer",
"vendor": "gstreamer",
"versions": [
{
"status": "affected",
"version": "\u003c 1.24.10"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "CWE-190: Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-12-11T19:12:40.186Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/"
},
{
"name": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch",
"tags": [
"x_refsource_MISC"
],
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch"
},
{
"name": "https://gstreamer.freedesktop.org/security/sa-2024-0014.html",
"tags": [
"x_refsource_MISC"
],
"url": "https://gstreamer.freedesktop.org/security/sa-2024-0014.html"
}
],
"source": {
"advisory": "GHSA-j7pq-xcp8-8qxx",
"discovery": "UNKNOWN"
},
"title": "GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-47606",
"datePublished": "2024-12-11T19:12:40.186Z",
"dateReserved": "2024-09-27T20:37:22.119Z",
"dateUpdated": "2025-11-03T20:39:54.545Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-47606",
"date": "2026-06-06",
"epss": "0.00724",
"percentile": "0.72966"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-47606\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-12-12T02:03:32.220\",\"lastModified\":\"2026-03-17T15:52:33.870\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.\"},{\"lang\":\"es\",\"value\":\"GStreamer es una librer\u00eda para construir gr\u00e1ficos de componentes de manejo de medios. Se ha detectado un desbordamiento de enteros en la funci\u00f3n qtdemux_parse_theora_extension dentro de qtdemux.c. La vulnerabilidad ocurre debido a un desbordamiento de la variable gint size, que hace que size contenga un valor grande no deseado cuando se convierte en un entero sin signo. Este valor negativo de 32 bits se convierte luego en un entero sin signo de 64 bits (0xfffffffffffffffa) en una llamada posterior a gst_buffer_new_and_alloc. La funci\u00f3n gst_buffer_new_allocate luego intenta asignar memoria, llamando finalmente a _sysmem_new_block. La funci\u00f3n _sysmem_new_block agrega alineaci\u00f3n y tama\u00f1o de encabezado al tama\u00f1o (sin signo), lo que causa el desbordamiento de la variable \u0027slice_size\u0027. Como resultado, solo se asignan 0x89 bytes, a pesar del gran tama\u00f1o de entrada. Cuando se produce la siguiente llamada a memcpy en gst_buffer_fill, los datos del archivo de entrada sobrescribir\u00e1n el contenido de la estructura de informaci\u00f3n GstMapInfo. Por \u00faltimo, durante la llamada a gst_memory_unmap, la memoria sobrescrita puede provocar un secuestro del puntero de funci\u00f3n, ya que se llama a la funci\u00f3n mem-\u0026gt;allocator-\u0026gt;mem_unmap_full con un puntero da\u00f1ado. Esta sobrescritura del puntero de funci\u00f3n podr\u00eda permitir a un atacante alterar el flujo de ejecuci\u00f3n del programa, lo que provocar\u00eda la ejecuci\u00f3n de c\u00f3digo arbitrario. Esta vulnerabilidad se corrigi\u00f3 en la versi\u00f3n 1.24.10.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-191\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.24.10\",\"matchCriteriaId\":\"1B92A50A-2A86-49C9-9E3E-CE01EBC1987B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]}],\"references\":[{\"url\":\"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://gstreamer.freedesktop.org/security/sa-2024-0014.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20250418-0003/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20250418-0003/\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T20:39:54.545Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-47606\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-12-11T20:43:34.825705Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-12-11T20:44:24.219Z\"}}], \"cna\": {\"title\": \"GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes\", \"source\": {\"advisory\": \"GHSA-j7pq-xcp8-8qxx\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 8.6, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"gstreamer\", \"product\": \"gstreamer\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 1.24.10\"}]}], \"references\": [{\"url\": \"https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/\", \"name\": \"https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch\", \"name\": \"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://gstreamer.freedesktop.org/security/sa-2024-0014.html\", \"name\": \"https://gstreamer.freedesktop.org/security/sa-2024-0014.html\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-190\", \"description\": \"CWE-190: Integer Overflow or Wraparound\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-12-11T19:12:40.186Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-47606\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-03T20:39:54.545Z\", \"dateReserved\": \"2024-09-27T20:37:22.119Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-12-11T19:12:40.186Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
alsa-2024:11122
Vulnerability from osv_almalinux
Published
2024-12-16 00:00
Modified
2024-12-23 08:18
Summary
Important: gstreamer1-plugins-good security update
Details
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-good packages contain a collection of well-supported plug-ins of good quality and under the LGPL license.
Security Fix(es):
- gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer (CVE-2024-47540)
- gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c (CVE-2024-47537)
- gstreamer1-plugins-good: OOB-write in convert_to_s334_1a (CVE-2024-47539)
- gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush (CVE-2024-47613)
- gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes (CVE-2024-47606)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "gstreamer1-plugins-good"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.22.1-3.el9_5"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "gstreamer1-plugins-good-gtk"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.22.1-3.el9_5"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-good packages contain a collection of well-supported plug-ins of good quality and under the LGPL license. \n\nSecurity Fix(es): \n\n * gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer (CVE-2024-47540)\n * gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c (CVE-2024-47537)\n * gstreamer1-plugins-good: OOB-write in convert_to_s334_1a (CVE-2024-47539)\n * gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush (CVE-2024-47613)\n * gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes (CVE-2024-47606)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n",
"id": "ALSA-2024:11122",
"modified": "2024-12-23T08:18:58Z",
"published": "2024-12-16T00:00:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2024:11122"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47537"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47539"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47540"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47606"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47613"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331719"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331722"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331726"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331753"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331760"
},
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/9/ALSA-2024-11122.html"
}
],
"related": [
"CVE-2024-47540",
"CVE-2024-47537",
"CVE-2024-47539",
"CVE-2024-47613",
"CVE-2024-47606"
],
"summary": "Important: gstreamer1-plugins-good security update"
}
alsa-2024:11299
Vulnerability from osv_almalinux
Published
2024-12-17 00:00
Modified
2024-12-18 12:41
Summary
Important: gstreamer1-plugins-good security update
Details
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-good packages contain a collection of well-supported plug-ins of good quality and under the LGPL license.
Security Fix(es):
- gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer (CVE-2024-47540)
- gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c (CVE-2024-47537)
- gstreamer1-plugins-good: OOB-write in convert_to_s334_1a (CVE-2024-47539)
- gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush (CVE-2024-47613)
- gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes (CVE-2024-47606)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References
| URL | Type | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gstreamer1-plugins-good"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.16.1-5.el8_10"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gstreamer1-plugins-good-gtk"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.16.1-5.el8_10"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-good packages contain a collection of well-supported plug-ins of good quality and under the LGPL license. \n\nSecurity Fix(es): \n\n * gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer (CVE-2024-47540)\n * gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c (CVE-2024-47537)\n * gstreamer1-plugins-good: OOB-write in convert_to_s334_1a (CVE-2024-47539)\n * gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush (CVE-2024-47613)\n * gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes (CVE-2024-47606)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n",
"id": "ALSA-2024:11299",
"modified": "2024-12-18T12:41:06Z",
"published": "2024-12-17T00:00:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2024:11299"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47537"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47539"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47540"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47606"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2024-47613"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331719"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331722"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331726"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331753"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2331760"
},
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/8/ALSA-2024-11299.html"
}
],
"related": [
"CVE-2024-47540",
"CVE-2024-47537",
"CVE-2024-47539",
"CVE-2024-47613",
"CVE-2024-47606"
],
"summary": "Important: gstreamer1-plugins-good security update"
}
Title
Уязвимость функции qtdemux_parse_theora_extension мультимедийного фреймворка Gstreamer, позволяющая нарушителю выполнить произвольный код
Description
Уязвимость функции qtdemux_parse_theora_extension мультимедийного фреймворка Gstreamer связана с целочисленным переполнением. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код
Severity
Vendor
Microsoft Corp, Red Hat Inc., Novell Inc., Сообщество свободного программного обеспечения, ООО «Ред Софт», ООО «РусБИТех-Астра», АО «ИВК», ООО «Юбитех», Сообщество GStreamer, АО "НППКТ", ООО «НЦПР», ООО «Открытая мобильная платформа»
Software Name
Windows, Red Hat Enterprise Linux, openSUSE Tumbleweed, Debian GNU/Linux, РЕД ОС (запись в едином реестре российских программ №3751), Astra Linux Special Edition (запись в едином реестре российских программ №369), SUSE Linux Enterprise Server for SAP Applications, SUSE Manager Retail Branch Server, SUSE Manager Proxy, SUSE Manager Server, SUSE Linux Enterprise Micro, АЛЬТ СП 10, SUSE Liberty Linux, SUSE Linux Enterprise High Performance Computing, Suse Linux Enterprise Server, Suse Linux Enterprise Desktop, SUSE Linux Enterprise Module for Basesystem, SUSE Linux Enterprise Module for Package Hub, SUSE Linux Enterprise Workstation Extension, OpenSUSE Leap, UBLinux (запись в едином реестре российских программ №6874), Gstreamer, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913), МСВСфера, ОС Аврора (запись в едином реестре российских программ №1543)
Software Version
- (Windows), 8 (Red Hat Enterprise Linux), - (openSUSE Tumbleweed), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (РЕД ОС), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), 15 SP4 (SUSE Linux Enterprise Server for SAP Applications), 4.3 (SUSE Manager Retail Branch Server), 4.3 (SUSE Manager Proxy), 4.3 (SUSE Manager Server), 5.3 (SUSE Linux Enterprise Micro), 8.2 Advanced Update Support (Red Hat Enterprise Linux), 15 SP5 (SUSE Linux Enterprise Server for SAP Applications), 5.4 (SUSE Linux Enterprise Micro), 8.4 Telecommunications Update Service (Red Hat Enterprise Linux), 8.4 Update Services for SAP Solutions (Red Hat Enterprise Linux), 8.4 Advanced Mission Critical Update Support (Red Hat Enterprise Linux), - (АЛЬТ СП 10), 5.5 (SUSE Linux Enterprise Micro), 9 (SUSE Liberty Linux), 8 (SUSE Liberty Linux), 15 SP4-ESPOS (SUSE Linux Enterprise High Performance Computing), 15 SP4-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP4-LTSS (Suse Linux Enterprise Server), 15 SP6 (Suse Linux Enterprise Desktop), 15 SP6 (Suse Linux Enterprise Server), 15 SP6 (SUSE Linux Enterprise Server for SAP Applications), 15 SP6 (SUSE Linux Enterprise High Performance Computing), 15 SP6 (SUSE Linux Enterprise Module for Basesystem), 15 SP6 (SUSE Linux Enterprise Module for Package Hub), 15 SP6 (SUSE Linux Enterprise Workstation Extension), 15.6 (OpenSUSE Leap), 8.6 Update Services for SAP Solutions (Red Hat Enterprise Linux), 8.6 Telecommunications Update Service (Red Hat Enterprise Linux), 8.6 Advanced Mission Critical Update Support (Red Hat Enterprise Linux), 7 Extended Lifecycle Support (Red Hat Enterprise Linux), 1.8 (Astra Linux Special Edition), 12 SP5-LTSS (Suse Linux Enterprise Server), 12 SP5 LTSS Extended Security (Suse Linux Enterprise Server), до 2405 (UBLinux), до 1.24.10 (Gstreamer), 15 SP5-LTSS (Suse Linux Enterprise Server), 15 SP5-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP5-ESPOS (SUSE Linux Enterprise High Performance Computing), до 2.12 (ОСОН ОСнова Оnyx), до 2.13 (ОСОН ОСнова Оnyx), 9.5 (МСВСфера), до 5.1.5 включительно (ОС Аврора)
Possible Mitigations
Использование рекомендаций:
https://gitlab.freedesktop.org/Gstreamer/Gstreamer/-/merge_requests/8032.patch
Для РедОС:
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
Для Debian GNU/Linux:
https://security-tracker.debian.org/tracker/CVE-2024-47606
Для программных продуктов Red Hat Inc.:
https://access.redhat.com/security/cve/cve-2024-47606
Для программных продуктов Novell Inc.:
https://www.suse.com/security/cve/CVE-2024-47606.html
Для UBLinux:
https://security.ublinux.ru/CVE-2024-47606
Обновление программного обеспечения gstreamer1.0 до версии 1.18.4-2.1+deb11u1.osnova2u1
Обновление программного обеспечения gst-plugins-good1.0 до версии 1.18.4-2+deb11u3
Для ОС Astra Linux:
- обновить пакет gstreamer1.0 до 1.22.0-2+deb12u1 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18
- обновить пакет gst-plugins-good1.0 до 1.22.1-1ubuntu1.2astra2 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18
Для ОС Альт 8 СП (релиз 10): установка обновления из публичного репозитория программного средства: https://altsp.su/obnovleniya-bezopasnosti/
Для МСВСфера: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:11122?lang=ru
Для ОС Astra Linux:
- обновить пакет gstreamer1.0 до 1.18.4-2.1+deb11u1+ci1 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17
- обновить пакет gst-plugins-good1.0 до 1.18.4-1astra4 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17
Для ОС Astra Linux:
- обновить пакет gstreamer1.0 до 1.18.4-2.1+deb11u1+ci1 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE47
- обновить пакет gst-plugins-good1.0 до 1.18.4-1astra4 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE47
Для ОС Аврора: https://cve.omp.ru/bb30515
Reference
https://redos.red-soft.ru/support/secure/
https://gitlab.freedesktop.org/Gstreamer/Gstreamer/-/merge_requests/8032.patch
https://security-tracker.debian.org/tracker/CVE-2024-47606
https://access.redhat.com/security/cve/cve-2024-47606
https://www.suse.com/security/cve/CVE-2024-47606.html
https://security.ublinux.ru/CVE-2024-47606
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.12/
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.13/
https://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18
https://altsp.su/obnovleniya-bezopasnosti/
https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:11122?lang=ru
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE101
https://cve.omp.ru/bb30515
CWE
CWE-190
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp, Red Hat Inc., Novell Inc., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb, \u041e\u041e\u041e \u00ab\u042e\u0431\u0438\u0442\u0435\u0445\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e GStreamer, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\", \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb, \u041e\u041e\u041e \u00ab\u041e\u0442\u043a\u0440\u044b\u0442\u0430\u044f \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u0430\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Windows), 8 (Red Hat Enterprise Linux), - (openSUSE Tumbleweed), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), 15 SP4 (SUSE Linux Enterprise Server for SAP Applications), 4.3 (SUSE Manager Retail Branch Server), 4.3 (SUSE Manager Proxy), 4.3 (SUSE Manager Server), 5.3 (SUSE Linux Enterprise Micro), 8.2 Advanced Update Support (Red Hat Enterprise Linux), 15 SP5 (SUSE Linux Enterprise Server for SAP Applications), 5.4 (SUSE Linux Enterprise Micro), 8.4 Telecommunications Update Service (Red Hat Enterprise Linux), 8.4 Update Services for SAP Solutions (Red Hat Enterprise Linux), 8.4 Advanced Mission Critical Update Support (Red Hat Enterprise Linux), - (\u0410\u041b\u042c\u0422 \u0421\u041f 10), 5.5 (SUSE Linux Enterprise Micro), 9 (SUSE Liberty Linux), 8 (SUSE Liberty Linux), 15 SP4-ESPOS (SUSE Linux Enterprise High Performance Computing), 15 SP4-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP4-LTSS (Suse Linux Enterprise Server), 15 SP6 (Suse Linux Enterprise Desktop), 15 SP6 (Suse Linux Enterprise Server), 15 SP6 (SUSE Linux Enterprise Server for SAP Applications), 15 SP6 (SUSE Linux Enterprise High Performance Computing), 15 SP6 (SUSE Linux Enterprise Module for Basesystem), 15 SP6 (SUSE Linux Enterprise Module for Package Hub), 15 SP6 (SUSE Linux Enterprise Workstation Extension), 15.6 (OpenSUSE Leap), 8.6 Update Services for SAP Solutions (Red Hat Enterprise Linux), 8.6 Telecommunications Update Service (Red Hat Enterprise Linux), 8.6 Advanced Mission Critical Update Support (Red Hat Enterprise Linux), 7 Extended Lifecycle Support (Red Hat Enterprise Linux), 1.8 (Astra Linux Special Edition), 12 SP5-LTSS (Suse Linux Enterprise Server), 12 SP5 LTSS Extended Security (Suse Linux Enterprise Server), \u0434\u043e 2405 (UBLinux), \u0434\u043e 1.24.10 (Gstreamer), 15 SP5-LTSS (Suse Linux Enterprise Server), 15 SP5-LTSS (SUSE Linux Enterprise High Performance Computing), 15 SP5-ESPOS (SUSE Linux Enterprise High Performance Computing), \u0434\u043e 2.12 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), \u0434\u043e 2.13 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), 9.5 (\u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430), \u0434\u043e 5.1.5 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (\u041e\u0421 \u0410\u0432\u0440\u043e\u0440\u0430)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://gitlab.freedesktop.org/Gstreamer/Gstreamer/-/merge_requests/8032.patch\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421:\n http://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2024-47606\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://access.redhat.com/security/cve/cve-2024-47606\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Novell Inc.:\nhttps://www.suse.com/security/cve/CVE-2024-47606.html\n\n\u0414\u043b\u044f UBLinux:\nhttps://security.ublinux.ru/CVE-2024-47606\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f gstreamer1.0 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1.18.4-2.1+deb11u1.osnova2u1\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f gst-plugins-good1.0 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1.18.4-2+deb11u3\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gstreamer1.0 \u0434\u043e 1.22.0-2+deb12u1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gst-plugins-good1.0 \u0434\u043e 1.22.1-1ubuntu1.2astra2 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u043b\u044c\u0442 8 \u0421\u041f (\u0440\u0435\u043b\u0438\u0437 10): \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430: https://altsp.su/obnovleniya-bezopasnosti/\n\n\u0414\u043b\u044f \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:11122?lang=ru\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gstreamer1.0 \u0434\u043e 1.18.4-2.1+deb11u1+ci1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gst-plugins-good1.0 \u0434\u043e 1.18.4-1astra4 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gstreamer1.0 \u0434\u043e 1.18.4-2.1+deb11u1+ci1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE47\n- \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 gst-plugins-good1.0 \u0434\u043e 1.18.4-1astra4 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE47\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u0432\u0440\u043e\u0440\u0430: https://cve.omp.ru/bb30515",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "11.12.2024",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "20.01.2026",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "29.01.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-00871",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-47606",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Windows, Red Hat Enterprise Linux, openSUSE Tumbleweed, Debian GNU/Linux, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), SUSE Linux Enterprise Server for SAP Applications, SUSE Manager Retail Branch Server, SUSE Manager Proxy, SUSE Manager Server, SUSE Linux Enterprise Micro, \u0410\u041b\u042c\u0422 \u0421\u041f 10, SUSE Liberty Linux, SUSE Linux Enterprise High Performance Computing, Suse Linux Enterprise Server, Suse Linux Enterprise Desktop, SUSE Linux Enterprise Module for Basesystem, SUSE Linux Enterprise Module for Package Hub, SUSE Linux Enterprise Workstation Extension, OpenSUSE Leap, UBLinux (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166874), Gstreamer, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430, \u041e\u0421 \u0410\u0432\u0440\u043e\u0440\u0430 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161543)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows - , Red Hat Inc. Red Hat Enterprise Linux 8 , Novell Inc. openSUSE Tumbleweed - , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP4 , Red Hat Inc. Red Hat Enterprise Linux 8.2 Advanced Update Support , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP5 , Red Hat Inc. Red Hat Enterprise Linux 8.4 Telecommunications Update Service , Red Hat Inc. Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions , Red Hat Inc. Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support , \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u041b\u042c\u0422 \u0421\u041f 10 - , Novell Inc. SUSE Liberty Linux 9 , Novell Inc. SUSE Liberty Linux 8 , Novell Inc. Suse Linux Enterprise Server 15 SP4-LTSS , Novell Inc. Suse Linux Enterprise Desktop 15 SP6 , Novell Inc. Suse Linux Enterprise Server 15 SP6 , Novell Inc. SUSE Linux Enterprise Server for SAP Applications 15 SP6 , Novell Inc. OpenSUSE Leap 15.6 , Red Hat Inc. Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions , Red Hat Inc. Red Hat Enterprise Linux 8.6 Telecommunications Update Service , Red Hat Inc. Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support , Red Hat Inc. Red Hat Enterprise Linux 7 Extended Lifecycle Support , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.8 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Novell Inc. Suse Linux Enterprise Server 12 SP5-LTSS , Novell Inc. Suse Linux Enterprise Server 12 SP5 LTSS Extended Security , \u041e\u041e\u041e \u00ab\u042e\u0431\u0438\u0442\u0435\u0445\u00bb UBLinux \u0434\u043e 2405 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166874), Novell Inc. Suse Linux Enterprise Server 15 SP5-LTSS , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.12 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.13 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430 9.5 , \u041e\u041e\u041e \u00ab\u041e\u0442\u043a\u0440\u044b\u0442\u0430\u044f \u043c\u043e\u0431\u0438\u043b\u044c\u043d\u0430\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0430\u00bb \u041e\u0421 \u0410\u0432\u0440\u043e\u0440\u0430 \u0434\u043e 5.1.5 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161543)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 qtdemux_parse_theora_extension \u043c\u0443\u043b\u044c\u0442\u0438\u043c\u0435\u0434\u0438\u0439\u043d\u043e\u0433\u043e \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Gstreamer, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0426\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u043e\u0435 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0438\u043b\u0438 \u0446\u0438\u043a\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0441\u0434\u0432\u0438\u0433 (CWE-190)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 qtdemux_parse_theora_extension \u043c\u0443\u043b\u044c\u0442\u0438\u043c\u0435\u0434\u0438\u0439\u043d\u043e\u0433\u043e \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Gstreamer \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://redos.red-soft.ru/support/secure/\nhttps://gitlab.freedesktop.org/Gstreamer/Gstreamer/-/merge_requests/8032.patch\nhttps://security-tracker.debian.org/tracker/CVE-2024-47606\nhttps://access.redhat.com/security/cve/cve-2024-47606\nhttps://www.suse.com/security/cve/CVE-2024-47606.html\nhttps://security.ublinux.ru/CVE-2024-47606\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.12/\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.13/\nhttps://wiki.astralinux.ru/astra-linux-se18-bulletin-2025-0811SE18\nhttps://altsp.su/obnovleniya-bezopasnosti/\nhttps://errata.msvsphere-os.ru/definition/9/INFCSA-2024:11122?lang=ru\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-1202SE17\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-1216SE101\nhttps://cve.omp.ru/bb30515",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-190",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,8)"
}
bit-java-2024-47606
Vulnerability from bitnami_vulndb
Published
2026-05-06 14:45
Modified
2026-05-08 06:11
Summary
GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes
Details
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the 'slice_size' variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem->allocator->mem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.
{
"affected": [
{
"package": {
"ecosystem": "Bitnami",
"name": "java",
"purl": "pkg:bitnami/java"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.8.0"
},
{
"introduced": "1.9.0"
},
{
"fixed": "8.0.451"
}
],
"type": "SEMVER"
}
],
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
],
"aliases": [
"CVE-2024-47606"
],
"database_specific": {
"cpes": [
"cpe:2.3:a:bellsoft:libericajdk:*:*:*:*:*:*:*:*"
],
"severity": "High"
},
"details": "GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.",
"id": "BIT-java-2024-47606",
"modified": "2026-05-08T06:11:36.072Z",
"published": "2026-05-06T14:45:01.107Z",
"references": [
{
"type": "WEB",
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch"
},
{
"type": "WEB",
"url": "https://gstreamer.freedesktop.org/security/sa-2024-0014.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47606"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20250418-0003/"
},
{
"type": "WEB",
"url": "https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/"
}
],
"schema_version": "1.6.2",
"summary": "GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes"
}
bit-jre-2024-47606
Vulnerability from bitnami_vulndb
Published
2026-05-08 05:46
Modified
2026-05-08 06:11
Summary
GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes
Details
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the 'slice_size' variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem->allocator->mem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.
{
"affected": [
{
"package": {
"ecosystem": "Bitnami",
"name": "jre",
"purl": "pkg:bitnami/jre"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.8.0"
},
{
"introduced": "1.9.0"
},
{
"fixed": "8.0.451"
}
],
"type": "SEMVER"
}
],
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
],
"aliases": [
"CVE-2024-47606"
],
"database_specific": {
"cpes": [
"cpe:2.3:a:bellsoft:libericajre:*:*:*:*:*:*:*:*"
],
"severity": "High"
},
"details": "GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.",
"id": "BIT-jre-2024-47606",
"modified": "2026-05-08T06:11:36.072Z",
"published": "2026-05-08T05:46:38.657Z",
"references": [
{
"type": "WEB",
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch"
},
{
"type": "WEB",
"url": "https://gstreamer.freedesktop.org/security/sa-2024-0014.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47606"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20250418-0003/"
},
{
"type": "WEB",
"url": "https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/"
}
],
"schema_version": "1.6.2",
"summary": "GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes"
}
CERTFR-2025-AVI-0319
Vulnerability from certfr_avis - Published: 2025-04-16 - Updated: 2025-04-16
De multiples vulnérabilités ont été découvertes dans Oracle Java SE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | GraalVM Enterprise Edition | Oracle GraalVM Enterprise Edition version 20.3.17 | ||
| Oracle | Java SE | Oracle Java SE version 21.0.6 | ||
| Oracle | Java SE | Oracle Java SE version 8u441 | ||
| Oracle | GraalVM Enterprise Edition | Oracle GraalVM for JDK version 21.0.6 | ||
| Oracle | Java SE | Oracle Java SE version 17.0.14 | ||
| Oracle | GraalVM Enterprise Edition | Oracle GraalVM for JDK version 24 | ||
| Oracle | Java SE | Oracle Java SE version 11.0.26 | ||
| Oracle | GraalVM Enterprise Edition | Oracle GraalVM for JDK version 17.0.14 | ||
| Oracle | GraalVM Enterprise Edition | Oracle GraalVM Enterprise Edition version 21.3.13 | ||
| Oracle | Java SE | Oracle Java SE version 24 | ||
| Oracle | Java SE | Oracle Java SE version 8u441-perf |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle GraalVM Enterprise Edition version 20.3.17",
"product": {
"name": "GraalVM Enterprise Edition",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 21.0.6",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 8u441",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle GraalVM for JDK version 21.0.6",
"product": {
"name": "GraalVM Enterprise Edition",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 17.0.14",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle GraalVM for JDK version 24",
"product": {
"name": "GraalVM Enterprise Edition",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 11.0.26",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle GraalVM for JDK version 17.0.14",
"product": {
"name": "GraalVM Enterprise Edition",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle GraalVM Enterprise Edition version 21.3.13",
"product": {
"name": "GraalVM Enterprise Edition",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 24",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java SE version 8u441-perf",
"product": {
"name": "Java SE",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-54508",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54508"
},
{
"name": "CVE-2024-44296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44296"
},
{
"name": "CVE-2024-54502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54502"
},
{
"name": "CVE-2024-47544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47544"
},
{
"name": "CVE-2024-54505",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54505"
},
{
"name": "CVE-2024-40866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40866"
},
{
"name": "CVE-2024-47545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47545"
},
{
"name": "CVE-2024-54479",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54479"
},
{
"name": "CVE-2024-47596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47596"
},
{
"name": "CVE-2025-24150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24150"
},
{
"name": "CVE-2024-27856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
},
{
"name": "CVE-2024-47606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47606"
},
{
"name": "CVE-2024-44187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44187"
},
{
"name": "CVE-2025-24162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24162"
},
{
"name": "CVE-2025-30691",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30691"
},
{
"name": "CVE-2024-47546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47546"
},
{
"name": "CVE-2024-44244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44244"
},
{
"name": "CVE-2024-44309",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44309"
},
{
"name": "CVE-2024-47778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47778"
},
{
"name": "CVE-2025-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23085"
},
{
"name": "CVE-2024-44308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44308"
},
{
"name": "CVE-2024-47777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47777"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2025-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23083"
},
{
"name": "CVE-2024-47597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47597"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2024-44185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44185"
},
{
"name": "CVE-2024-54543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54543"
},
{
"name": "CVE-2025-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23084"
},
{
"name": "CVE-2024-47776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47776"
},
{
"name": "CVE-2024-47775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47775"
},
{
"name": "CVE-2024-54534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
},
{
"name": "CVE-2025-24143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24143"
},
{
"name": "CVE-2025-24158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24158"
}
],
"initial_release_date": "2025-04-16T00:00:00",
"last_revision_date": "2025-04-16T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0319",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle Java SE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle Java SE",
"vendor_advisories": [
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 Oracle Java SE cpuapr2025",
"url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
}
]
}
CERTFR-2025-AVI-0661
Vulnerability from certfr_avis - Published: 2025-08-07 - Updated: 2025-08-07
De multiples vulnérabilités ont été découvertes dans les produits Splunk. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "AppDynamics Cluster Agent versions ant\u00e9rieures \u00e0 25.6.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": " AppDynamics On-Premise Enterprise Console versions ant\u00e9rieures \u00e0 25.4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-30681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30681"
},
{
"name": "CVE-2019-17267",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17267"
},
{
"name": "CVE-2022-48564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48564"
},
{
"name": "CVE-2021-21409",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21409"
},
{
"name": "CVE-2025-30689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30689"
},
{
"name": "CVE-2025-30715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30715"
},
{
"name": "CVE-2025-30682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30682"
},
{
"name": "CVE-2025-21500",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21500"
},
{
"name": "CVE-2023-1370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1370"
},
{
"name": "CVE-2025-21503",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21503"
},
{
"name": "CVE-2025-21543",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21543"
},
{
"name": "CVE-2024-23944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23944"
},
{
"name": "CVE-2024-47601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47601"
},
{
"name": "CVE-2025-21519",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21519"
},
{
"name": "CVE-2024-47544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47544"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2024-47538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47538"
},
{
"name": "CVE-2024-47545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47545"
},
{
"name": "CVE-2023-45853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45853"
},
{
"name": "CVE-2022-38398",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38398"
},
{
"name": "CVE-2025-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30703"
},
{
"name": "CVE-2025-21505",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21505"
},
{
"name": "CVE-2022-45061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45061"
},
{
"name": "CVE-2024-4761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4761"
},
{
"name": "CVE-2025-21501",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21501"
},
{
"name": "CVE-2024-47596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47596"
},
{
"name": "CVE-2022-48285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48285"
},
{
"name": "CVE-2019-9674",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9674"
},
{
"name": "CVE-2025-30696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30696"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2020-10650",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10650"
},
{
"name": "CVE-2025-21584",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21584"
},
{
"name": "CVE-2022-0391",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0391"
},
{
"name": "CVE-2020-36189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36189"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2023-34462",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34462"
},
{
"name": "CVE-2018-3824",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3824"
},
{
"name": "CVE-2024-7246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7246"
},
{
"name": "CVE-2024-47602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47602"
},
{
"name": "CVE-2021-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20190"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-47541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47541"
},
{
"name": "CVE-2024-47774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47774"
},
{
"name": "CVE-2023-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50186"
},
{
"name": "CVE-2024-47599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47599"
},
{
"name": "CVE-2024-47606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47606"
},
{
"name": "CVE-2019-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16335"
},
{
"name": "CVE-2024-47540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47540"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2023-0833",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0833"
},
{
"name": "CVE-2024-47542",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47542"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2018-7489",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7489"
},
{
"name": "CVE-2025-30683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30683"
},
{
"name": "CVE-2025-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30699"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2025-21531",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21531"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2025-21555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21555"
},
{
"name": "CVE-2024-47546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47546"
},
{
"name": "CVE-2024-47607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47607"
},
{
"name": "CVE-2021-37137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37137"
},
{
"name": "CVE-2019-14439",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14439"
},
{
"name": "CVE-2025-21574",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21574"
},
{
"name": "CVE-2025-27888",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27888"
},
{
"name": "CVE-2024-47537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47537"
},
{
"name": "CVE-2025-21580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21580"
},
{
"name": "CVE-2024-52979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52979"
},
{
"name": "CVE-2025-21575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21575"
},
{
"name": "CVE-2023-6992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6992"
},
{
"name": "CVE-2025-21540",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21540"
},
{
"name": "CVE-2025-21577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21577"
},
{
"name": "CVE-2024-47778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47778"
},
{
"name": "CVE-2022-24823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24823"
},
{
"name": "CVE-2024-5642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5642"
},
{
"name": "CVE-2021-37136",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37136"
},
{
"name": "CVE-2018-12022",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12022"
},
{
"name": "CVE-2018-5968",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5968"
},
{
"name": "CVE-2024-47777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47777"
},
{
"name": "CVE-2025-30705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30705"
},
{
"name": "CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"name": "CVE-2021-4189",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4189"
},
{
"name": "CVE-2024-47543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47543"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2024-47600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47600"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"name": "CVE-2025-30684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30684"
},
{
"name": "CVE-2017-7525",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7525"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-21579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21579"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2023-52428",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52428"
},
{
"name": "CVE-2025-21490",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21490"
},
{
"name": "CVE-2024-47835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47835"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2024-47597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47597"
},
{
"name": "CVE-2025-21520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21520"
},
{
"name": "CVE-2024-47539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47539"
},
{
"name": "CVE-2021-23413",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23413"
},
{
"name": "CVE-2023-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6378"
},
{
"name": "CVE-2022-4899",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4899"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2022-40146",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40146"
},
{
"name": "CVE-2025-30721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30721"
},
{
"name": "CVE-2022-42890",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42890"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2025-21491",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21491"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2020-36518",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36518"
},
{
"name": "CVE-2021-42550",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42550"
},
{
"name": "CVE-2025-30687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30687"
},
{
"name": "CVE-2024-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47598"
},
{
"name": "CVE-2024-47603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47603"
},
{
"name": "CVE-2022-38648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38648"
},
{
"name": "CVE-2025-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21529"
},
{
"name": "CVE-2025-21559",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21559"
},
{
"name": "CVE-2019-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14540"
},
{
"name": "CVE-2025-21523",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21523"
},
{
"name": "CVE-2025-21518",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21518"
},
{
"name": "CVE-2025-30704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30704"
},
{
"name": "CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"name": "CVE-2024-47615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47615"
},
{
"name": "CVE-2025-30693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30693"
},
{
"name": "CVE-2025-21585",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21585"
},
{
"name": "CVE-2017-17485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17485"
},
{
"name": "CVE-2025-21497",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21497"
},
{
"name": "CVE-2019-14379",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14379"
},
{
"name": "CVE-2024-47776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47776"
},
{
"name": "CVE-2024-47834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47834"
},
{
"name": "CVE-2024-47775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47775"
},
{
"name": "CVE-2025-21581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21581"
},
{
"name": "CVE-2025-30685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30685"
},
{
"name": "CVE-2025-30695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30695"
},
{
"name": "CVE-2025-30688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30688"
},
{
"name": "CVE-2025-21522",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21522"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2025-21546",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21546"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2022-41881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41881"
},
{
"name": "CVE-2022-41704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41704"
},
{
"name": "CVE-2019-14892",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14892"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
}
],
"initial_release_date": "2025-08-07T00:00:00",
"last_revision_date": "2025-08-07T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0661",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk",
"vendor_advisories": [
{
"published_at": "2025-08-06",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0802",
"url": "https://advisory.splunk.com/advisories/SVD-2025-0802"
},
{
"published_at": "2025-08-06",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0801",
"url": "https://advisory.splunk.com/advisories/SVD-2025-0801"
}
]
}
FKIE_CVE-2024-47606
Vulnerability from fkie_nvd - Published: 2024-12-12 02:03 - Updated: 2026-03-17 15:52
Severity
Summary
GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the 'slice_size' variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem->allocator->mem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch | Patch | |
| security-advisories@github.com | https://gstreamer.freedesktop.org/security/sa-2024-0014.html | Release Notes | |
| security-advisories@github.com | https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html | Mailing List | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20250418-0003/ |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| gstreamer | gstreamer | * | |
| debian | debian_linux | 11.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1B92A50A-2A86-49C9-9E3E-CE01EBC1987B",
"versionEndExcluding": "1.24.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the \u0027slice_size\u0027 variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem-\u003eallocator-\u003emem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10."
},
{
"lang": "es",
"value": "GStreamer es una librer\u00eda para construir gr\u00e1ficos de componentes de manejo de medios. Se ha detectado un desbordamiento de enteros en la funci\u00f3n qtdemux_parse_theora_extension dentro de qtdemux.c. La vulnerabilidad ocurre debido a un desbordamiento de la variable gint size, que hace que size contenga un valor grande no deseado cuando se convierte en un entero sin signo. Este valor negativo de 32 bits se convierte luego en un entero sin signo de 64 bits (0xfffffffffffffffa) en una llamada posterior a gst_buffer_new_and_alloc. La funci\u00f3n gst_buffer_new_allocate luego intenta asignar memoria, llamando finalmente a _sysmem_new_block. La funci\u00f3n _sysmem_new_block agrega alineaci\u00f3n y tama\u00f1o de encabezado al tama\u00f1o (sin signo), lo que causa el desbordamiento de la variable \u0027slice_size\u0027. Como resultado, solo se asignan 0x89 bytes, a pesar del gran tama\u00f1o de entrada. Cuando se produce la siguiente llamada a memcpy en gst_buffer_fill, los datos del archivo de entrada sobrescribir\u00e1n el contenido de la estructura de informaci\u00f3n GstMapInfo. Por \u00faltimo, durante la llamada a gst_memory_unmap, la memoria sobrescrita puede provocar un secuestro del puntero de funci\u00f3n, ya que se llama a la funci\u00f3n mem-\u0026gt;allocator-\u0026gt;mem_unmap_full con un puntero da\u00f1ado. Esta sobrescritura del puntero de funci\u00f3n podr\u00eda permitir a un atacante alterar el flujo de ejecuci\u00f3n del programa, lo que provocar\u00eda la ejecuci\u00f3n de c\u00f3digo arbitrario. Esta vulnerabilidad se corrigi\u00f3 en la versi\u00f3n 1.24.10."
}
],
"id": "CVE-2024-47606",
"lastModified": "2026-03-17T15:52:33.870",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2024-12-12T02:03:32.220",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8032.patch"
},
{
"source": "security-advisories@github.com",
"tags": [
"Release Notes"
],
"url": "https://gstreamer.freedesktop.org/security/sa-2024-0014.html"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://securitylab.github.com/advisories/GHSL-2024-166_Gstreamer/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00016.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.netapp.com/advisory/ntap-20250418-0003/"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-191"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
NCSC-2025-0130
Vulnerability from csaf_ncscnl - Published: 2025-04-16 15:04 - Updated: 2025-04-16 15:04Summary
Kwetsbaarheden verholpen in Oracle Java
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Oracle heeft kwetsbaarheden verholpen in Oracle Java SE en GraalVM (Specifiek voor versies 17.0.14, 21.0.6, 21.0.6 en 24).
Interpretaties: De kwetsbaarheden in Oracle Java SE en GraalVM stellen ongeauthenticeerde kwaadwillenden met netwerktoegang in staat om kritieke gegevens te manipuleren of te benaderen. Dit kan leiden tot ongeautoriseerde toegang tot gegevens, vooral via API's en in omgevingen die onbetrouwbare code uitvoeren. De kwetsbaarheid in de GStreamer-bibliotheek kan ook leiden tot geheugenproblemen en mogelijk willekeurige code-executie door beschadigde pointers.
Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-190: Integer Overflow or Wraparound
CWE-284: Improper Access Control
CWE-863: Incorrect Authorization
CWE-787: Out-of-bounds Write
9.8 (Critical)
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
CWE-787
- Out-of-bounds Write
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
7.4 (High)
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
7.7 (High)
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
4.8 (Medium)
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
5.6 (Medium)
Affected products
Known affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle GraalVM for JDK
|
cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:unknown/17.0.14
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle GraalVM for JDK
|
vers:unknown/24 | ||
|
vers:unknown/11.0.26
Oracle / Java Se
|
cpe:/a:oracle:java_se:11.0.26
|
vers:unknown/11.0.26 | |
|
vers:unknown/17.0.14
Oracle / Java Se
|
cpe:/a:oracle:java_se:17.0.14
|
vers:unknown/17.0.14 | |
|
vers:unknown/21.0.6
Oracle / Java Se
|
cpe:/a:oracle:java_se:21.0.6
|
vers:unknown/21.0.6 | |
|
vers:unknown/24
Oracle / Java Se
|
cpe:/a:oracle:java_se:24
|
vers:unknown/24 | |
|
vers:unknown/8u441
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441
|
vers:unknown/8u441 | |
|
vers:unknown/8u441
Oracle / Oracle / Java Se
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle / Java Se
|
cpe:/a:oracle:java_se:8u441-perf
|
vers:unknown/8u441-perf | |
|
vers:oracle/11.0.26
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*
|
vers:oracle/11.0.26 | |
|
vers:oracle/17.0.14
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*
|
vers:oracle/17.0.14 | |
|
vers:oracle/21.0.6
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*
|
vers:oracle/21.0.6 | |
|
vers:oracle/24
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*
|
vers:oracle/24 | |
|
vers:oracle/8u441
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*
|
vers:oracle/8u441 | |
|
vers:oracle/8u441-perf
Oracle / Oracle Java SE / Oracle Java SE
|
cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*
|
vers:oracle/8u441-perf | |
|
vers:unknown/11.0.26
Oracle Corporation / Oracle Java SE
|
vers:unknown/11.0.26 | ||
|
vers:unknown/17.0.14
Oracle Corporation / Oracle Java SE
|
vers:unknown/17.0.14 | ||
|
vers:unknown/21.0.6
Oracle Corporation / Oracle Java SE
|
vers:unknown/21.0.6 | ||
|
vers:unknown/24
Oracle Corporation / Oracle Java SE
|
vers:unknown/24 | ||
|
vers:unknown/8u441
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441 | ||
|
vers:unknown/8u441-perf
Oracle Corporation / Oracle Java SE
|
vers:unknown/8u441-perf | ||
|
vers:oracle/20.3.17
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*
|
vers:oracle/20.3.17 | |
|
vers:oracle/21.3.13
Oracle / Oracle Java SE / Oracle GraalVM Enterprise Edition
|
cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*
|
vers:oracle/21.3.13 | |
|
vers:unknown/20.3.17
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/20.3.17 | ||
|
vers:unknown/21.3.13
Oracle Corporation / Oracle GraalVM Enterprise Edition
|
vers:unknown/21.3.13 |
References
7 references
| URL | Category |
|---|---|
| https://www.oracle.com/security-alerts/cpuapr2025.html | external |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2025… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2025… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2025… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2025… | self |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft kwetsbaarheden verholpen in Oracle Java SE en GraalVM (Specifiek voor versies 17.0.14, 21.0.6, 21.0.6 en 24).",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden in Oracle Java SE en GraalVM stellen ongeauthenticeerde kwaadwillenden met netwerktoegang in staat om kritieke gegevens te manipuleren of te benaderen. Dit kan leiden tot ongeautoriseerde toegang tot gegevens, vooral via API\u0027s en in omgevingen die onbetrouwbare code uitvoeren. De kwetsbaarheid in de GStreamer-bibliotheek kan ook leiden tot geheugenproblemen en mogelijk willekeurige code-executie door beschadigde pointers.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd; oracle",
"url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Java",
"tracking": {
"current_release_date": "2025-04-16T15:04:40.041941Z",
"generator": {
"date": "2025-02-25T15:15:00Z",
"engine": {
"name": "V.A.",
"version": "1.0"
}
},
"id": "NCSC-2025-0130",
"initial_release_date": "2025-04-16T15:04:40.041941Z",
"revision_history": [
{
"date": "2025-04-16T15:04:40.041941Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/17.0.14",
"product": {
"name": "vers:oracle/17.0.14",
"product_id": "CSAFPID-2699120",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graalvm_for_jdk:17.0.14:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/21.0.6",
"product": {
"name": "vers:oracle/21.0.6",
"product_id": "CSAFPID-2699118",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graalvm_for_jdk:21.0.6:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/24",
"product": {
"name": "vers:oracle/24",
"product_id": "CSAFPID-2699115",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graalvm_for_jdk:24:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle GraalVM for JDK"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/11.0.26",
"product": {
"name": "vers:oracle/11.0.26",
"product_id": "CSAFPID-2699119",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:11.0.26:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/17.0.14",
"product": {
"name": "vers:oracle/17.0.14",
"product_id": "CSAFPID-2699114",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:17.0.14:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/21.0.6",
"product": {
"name": "vers:oracle/21.0.6",
"product_id": "CSAFPID-2699116",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:21.0.6:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/24",
"product": {
"name": "vers:oracle/24",
"product_id": "CSAFPID-2699117",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:24:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/8u441",
"product": {
"name": "vers:oracle/8u441",
"product_id": "CSAFPID-2698987",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:8u441:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/8u441-perf",
"product": {
"name": "vers:oracle/8u441-perf",
"product_id": "CSAFPID-2699040",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:java_se:8u441:*:*:*:enterprise_performance:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Java SE"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/20.3.17",
"product": {
"name": "vers:oracle/20.3.17",
"product_id": "CSAFPID-2698988",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graalvm:20.3.17:*:*:*:enterprise:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/21.3.13",
"product": {
"name": "vers:oracle/21.3.13",
"product_id": "CSAFPID-2698986",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graalvm:21.3.13:*:*:*:enterprise:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle GraalVM Enterprise Edition"
}
],
"category": "product_family",
"name": "Oracle Java SE"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/11.0.26",
"product": {
"name": "vers:unknown/11.0.26",
"product_id": "CSAFPID-2726951",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:11.0.26"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/17.0.14",
"product": {
"name": "vers:unknown/17.0.14",
"product_id": "CSAFPID-2726953",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:17.0.14"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/21.0.6",
"product": {
"name": "vers:unknown/21.0.6",
"product_id": "CSAFPID-2726950",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:21.0.6"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/24",
"product": {
"name": "vers:unknown/24",
"product_id": "CSAFPID-2726955",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:24"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/8u441",
"product": {
"name": "vers:unknown/8u441",
"product_id": "CSAFPID-2726960",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:8u441"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/8u441-perf",
"product": {
"name": "vers:unknown/8u441-perf",
"product_id": "CSAFPID-2726952",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:8u441-perf"
}
}
}
],
"category": "product_name",
"name": "Java Se"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/8u441",
"product": {
"name": "vers:unknown/8u441",
"product_id": "CSAFPID-2698325"
}
}
],
"category": "product_name",
"name": "Java Se"
}
],
"category": "product_family",
"name": "Oracle"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/17.0.14",
"product": {
"name": "vers:unknown/17.0.14",
"product_id": "CSAFPID-2698478"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/21.0.6",
"product": {
"name": "vers:unknown/21.0.6",
"product_id": "CSAFPID-2698479"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/24",
"product": {
"name": "vers:unknown/24",
"product_id": "CSAFPID-2698480"
}
}
],
"category": "product_name",
"name": "Oracle GraalVM for JDK"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/11.0.26",
"product": {
"name": "vers:unknown/11.0.26",
"product_id": "CSAFPID-2698474"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/17.0.14",
"product": {
"name": "vers:unknown/17.0.14",
"product_id": "CSAFPID-2698475"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/21.0.6",
"product": {
"name": "vers:unknown/21.0.6",
"product_id": "CSAFPID-2698476"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/24",
"product": {
"name": "vers:unknown/24",
"product_id": "CSAFPID-2698477"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/8u441",
"product": {
"name": "vers:unknown/8u441",
"product_id": "CSAFPID-2698472"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/8u441-perf",
"product": {
"name": "vers:unknown/8u441-perf",
"product_id": "CSAFPID-2698473"
}
}
],
"category": "product_name",
"name": "Oracle Java SE"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/20.3.17",
"product": {
"name": "vers:unknown/20.3.17",
"product_id": "CSAFPID-2698481"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/21.3.13",
"product": {
"name": "vers:unknown/21.3.13",
"product_id": "CSAFPID-2698482"
}
}
],
"category": "product_name",
"name": "Oracle GraalVM Enterprise Edition"
}
],
"category": "vendor",
"name": "Oracle Corporation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-47606",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47606",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47606.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
}
],
"title": "CVE-2024-47606"
},
{
"cve": "CVE-2024-54534",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-54534",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54534.json"
}
],
"title": "CVE-2024-54534"
},
{
"cve": "CVE-2025-21587",
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21587",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21587.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
}
],
"title": "CVE-2025-21587"
},
{
"cve": "CVE-2025-23083",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "other",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-23083",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23083.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
}
],
"title": "CVE-2025-23083"
},
{
"cve": "CVE-2025-30691",
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30691",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30691.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
}
],
"title": "CVE-2025-30691"
},
{
"cve": "CVE-2025-30698",
"product_status": {
"known_affected": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30698",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30698.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-2699120",
"CSAFPID-2699118",
"CSAFPID-2699115",
"CSAFPID-2698478",
"CSAFPID-2698479",
"CSAFPID-2698480",
"CSAFPID-2726951",
"CSAFPID-2726953",
"CSAFPID-2726950",
"CSAFPID-2726955",
"CSAFPID-2726960",
"CSAFPID-2698325",
"CSAFPID-2726952",
"CSAFPID-2699119",
"CSAFPID-2699114",
"CSAFPID-2699116",
"CSAFPID-2699117",
"CSAFPID-2698987",
"CSAFPID-2699040",
"CSAFPID-2698474",
"CSAFPID-2698475",
"CSAFPID-2698476",
"CSAFPID-2698477",
"CSAFPID-2698472",
"CSAFPID-2698473",
"CSAFPID-2698988",
"CSAFPID-2698986",
"CSAFPID-2698481",
"CSAFPID-2698482"
]
}
],
"title": "CVE-2025-30698"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…