CVE-2024-47613 | GStreamer up to 1.24.9 gstvorbisdec.c vorbis_handle_identification_packet null pointer dereference (GHSL-2024-115)

Inserito da Angelo Barbosa | Dic 11, 2024 | CVE

A vulnerability classified as problematic was found in GStreamer up to 1.24.9. Affected by this vulnerability is the function vorbis_handle_identification_packet of the file gstvorbisdec.c. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2024-47613. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47613 | GStreamer up to 1.24.9 gstvorbisdec.c vorbis_handle_identification_packet null pointer dereference (GHSL-2024-115)

Post correlati

CVE-2024-50242 | Linux Kernel up to 6.6.59/6.11.6 ntfs3 ntfs_file_release Privilege Escalation (550ef40fa636/82685eb6ca1d/031d6f608290)

CVE-2024-3492 | Events Manager Plugin up to 6.4.7.3 on WordPress Shortcode event_category cross site scripting

CVE-2024-52400 | Subhasis Laha Gallerio Plugin up to 1.01 on WordPress unrestricted upload

CVE-2024-1332 | Custom Fonts Plugin up to 2.1.4 on WordPress cross site scripting