Vulnetix
Try Vulnetix Request Demo
GCVE-VVD-MAGEIA-2016-424
Advisory Published
Vulnetix · Advisory published December 29, 2016
Multiple flaws were discovered in GStreamer's FLC/FLI/FLX media file format decoding plug-in. A remote attacker could use these flaws to cause an application using GStreamer to crash or, potentially, execute arbitrary code with the privileges of the user running the application (CVE-2016-9634, CVE-2016-9635, CVE-2016-9636, CVE-2016-9808). An invalid memory read access flaw was found in GStreamer's FLC/FLI/FLX media file format decoding plug-in. A remote attacker could use this flaw to cause an application using GStreamer to crash (CVE-2016-9807, CVE-2016-9810). Note that CVE-2016-9810 only affected gstreamer1.0-plugins-good.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiagstreamer0.10-plugins-good0 (affected), 0.10.31-9.1.mga5 (unaffected)
Mageiagstreamer1.0-plugins-good0 (affected), 1.4.3-2.1.mga5 (unaffected)

Aliases

CVE-2016-9636CVE-2016-9807CVE-2016-9808CVE-2016-9635CVE-2016-9634CVE-2016-9810

Transitive aliases

SUSE-SU-2017:0330-1GHSA-vw8c-5cg5-c7cjGHSA-r6qf-x4mq-x26gCVE-2017-5842CVE-2017-5841EUVD-2017-14919SUSE-SU-2017:1010-1GHSA-mpgw-wf67-6mwjGHSA-m8pw-46hr-f4pfGHSA-w4j6-r4r5-x745WID-SEC-W-2023-2070GSD-2017-5841CVE-2017-5846CVE-2008-1686GHSA-653c-g2jf-pf9xSUSE-SU-2019:1508-1GHSA-26q7-7f46-37j5GHSA-mrmg-668v-m9jcRHSA-2017:2060SUSE-SU-2019:14076-1RHSA-2016:2975CNVD-2017-00736EUVD-2017-14922GSD-2017-5838SUSE-SU-2017:0967-1EUVD-2016-10613SUSE-SU-2020:1300-1BDU:2015-07597RHSA-2008:0235CNVD-2017-00057GSD-2016-9807EUVD-2016-10611CVE-2016-9446BDU:2021-00805GHSA-q2gc-pmx5-2pg2VVD-MAGEIA-2018-12BDU:2015-03308CNVD-2016-11621CVE-2016-10199GSD-2016-9447SUSE-SU-2019:1509-1VVD-MAGEIA-2018-13GHSA-3xp5-mpvc-wqpwSUSE-SU-2017:0028-1VVD-MAGEIA-2018-15EUVD-2016-10614VVD-MAGEIA-2017-300SUSE-SU-2017:0237-1GHSA-mgm2-74j5-jf3cCNVD-2017-00123EUVD-2017-14914GHSA-j5pg-9rvj-55gpGSD-2016-10199GHSA-cc95-pv6q-rgmhGSD-2017-5845GSD-2016-9812CVE-2017-5844GSD-2016-9810RHSA-2017:0021OPENSUSE-SU-2024:10827-1CVE-2017-5847GHSA-c453-cjpc-84jfGHSA-4c4c-7hrr-jfv2SUSE-SU-2017:0225-1GHSA-rvx6-588f-ggm9EUVD-2017-14924GHSA-p7qh-jxmh-67r6SUSE-SU-2020:1300-2CVE-2017-5839VVD-MAGEIA-2017-21CVE-2016-9809CVE-2016-9447OPENSUSE-SU-2024:10828-1EUVD-2008-1687BDU:2015-07599GSD-2016-9636CNVD-2016-11620CVE-2017-5845CNVD-2017-01572GSD-2017-5843CNVD-2017-01488EUVD-2017-14923GSD-2016-9813GSD-2016-9634GSD-2016-9808VVD-MAGEIA-2017-348OPENSUSE-SU-2024:10830-1GHSA-3j54-g484-c9vmEUVD-2017-14918RHSA-2017:0018VVD-GENTOO-2008-217820GHSA-gp27-6q6r-3vcmEUVD-2016-10612EUVD-2016-1383RHSA-2016:2974BDU:2015-07596GHSA-fp84-6752-h29xGHSA-pmrq-vf7r-jxr9EUVD-2017-14925VVD-MAGEIA-2018-14GSD-2016-9809CNVD-2017-00056GSD-2019-9928SUSE-SU-2016:3296-1EUVD-2017-14915CVE-2017-5837BDU:2021-00806CVE-2016-9812CNVD-2017-00121GSD-2016-9635VVD-MAGEIA-2017-320CVE-2016-9445SUSE-SU-2017:0966-1CNVD-2017-01451CVE-2016-9813EUVD-2016-10610VVD-GENTOO-2008-216499CVE-2017-5840SUSE-SU-2017:1004-1GHSA-wccf-r8h3-9jc2GHSA-pj86-cp84-fxhpBDU:2021-00807SUSE-SU-2017:0210-1CNVD-2016-11619GHSA-xqgw-4rjf-hj4wEUVD-2016-10256BDU:2021-00804SUSE-SU-2017:0331-1VVD-GENTOO-2019-684842BDU:2019-02505EUVD-2016-1384CNVD-2017-01486EUVD-2017-14917OPENSUSE-SU-2024:10829-1CVE-2019-9928EUVD-2019-19283SUSE-SU-2016:3303-1EUVD-2016-10438EUVD-2017-14916VVD-GENTOO-2016-600142CVE-2017-5838RHSA-2017:0019EUVD-2016-10609BDU:2021-00808CNVD-2017-00122GHSA-8q5j-pq4c-9v79RHSA-2017:0020EUVD-2016-10437EUVD-2016-10608CVE-2016-9811CVE-2016-10198GHSA-f9mv-78h4-x2jxSUSE-SU-2017:0962-1EUVD-2017-14920CVE-2017-5848SUSE-SU-2017:0027-1EUVD-2017-14921EUVD-2016-10255EUVD-2016-10257OPENSUSE-SU-2020:0678-1SUSE-SU-2019:1600-1SUSE-SU-2019:1602-1EUVD-2016-10436CVE-2017-5843CNVD-2017-01574GHSA-pvcc-25wc-frxrCNVD-2016-11659SUSE-SU-2016:3288-1OPENSUSE-SU-2024:10826-1SUSE-SU-2016:3297-1GHSA-x48g-rj33-j8m4BDU:2015-03309BDU:2015-07598GHSA-fx73-fwc7-g6p4

References

Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities
advisory
Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities
issue
Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities
issue
Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON