VDB
GCVE-VVD-MAGEIA-2017-348
GCVE-VVD-MAGEIA-2017-348
Advisory Published
A crafted AAC audio file could have caused an invalid read and thus
corruption or denial of service (CVE-2016-10198).
A crafted mp4 file could have caused an invalid read and thus corruption
or denial of service (CVE-2016-10199).
A crafted AVI file could have caused an invalid read and thus corruption
or denial of service (CVE-2017-5840).
A crafted AVI file with metadata tag entries (ncdt) could have caused
invalid read access and thus corruption or denial of service
(CVE-2017-5841).
A crafted AVI file could have caused an invalid read access resulting in
denial of service (CVE-2017-5845).
Note that GStreamer 0.10 was only affected by CVE-2016-10198 and
CVE-2017-5840.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | gstreamer1.0-plugins-good | 0 (affected), 1.4.3-2.2.mga5 (unaffected) | — |
| Mageia | gstreamer0.10-plugins-good | 0 (affected), 0.10.31-9.2.mga5 (unaffected) | — |
Aliases
Transitive aliases
GHSA-mpgw-wf67-6mwjSUSE-SU-2017:1004-1BDU:2021-00805BDU:2021-00806GHSA-q2gc-pmx5-2pg2EUVD-2017-14917GSD-2017-5845BDU:2021-00808BDU:2021-00804GHSA-w4j6-r4r5-x745CNVD-2017-01486CNVD-2017-01451EUVD-2017-14918GSD-2017-5841EUVD-2016-1383EUVD-2016-1384BDU:2021-00807GHSA-fx73-fwc7-g6p4GSD-2016-10199EUVD-2017-14922CNVD-2017-01572GHSA-rvx6-588f-ggm9
References
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.