VDB
GCVE-VVD-MAGEIA-2024-119
GCVE-VVD-MAGEIA-2024-119
Advisory Published
Heap-based buffer overflow in the AV1 codec parser when handling certain
malformed streams before GStreamer 1.22.9
It is possible for a malicious third party to trigger a crash in the
application, and possibly also effect code execution through heap
manipulation.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | nodejs | 0 (affected), 20.12.0-1.mga9 (unaffected) | — |
| Mageia | yarnpkg | 0 (affected), 1.22.22-0.10.5.0.1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0 | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-devtools | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-editing-services | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-libav | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-moodbar | 0 (affected), 1.3.0-1.mga9 (unaffected), 0 (affected), 1.3.0-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-omx | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-plugins-bad | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9.tainted (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9.tainted (unaffected) | — |
| Mageia | gstreamer1.0-plugins-base | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-plugins-good | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-plugins-ugly | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9.tainted (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9.tainted (unaffected) | — |
| Mageia | gstreamer1.0-python | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-rtsp-server | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
| Mageia | gstreamer1.0-vaapi | 0 (affected), 1.22.11-1.mga9 (unaffected), 0 (affected), 1.22.11-1.mga9 (unaffected) | — |
References
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.