Integer Underflow Vulnerability in GStreamer Media Library
CVE-2024-47545

6.9MEDIUM

Key Information:

Vendor

Gstreamer

Status
Gstreamer
Vendor
CVE Published:
12 December 2024

What is CVE-2024-47545?

An integer underflow vulnerability has been identified in the 'qtdemux_parse_trak' function within qtdemux.c of the GStreamer media handling library. During the parsing of the 'strf' sub-element, the size variable can become negatively valued when it is less than 40 due to the subtraction operation. This scenario causes the subsequent call to 'gst_buffer_fill' to execute 'memcpy' with an excessively large size, potentially leading to an out-of-bounds read (OOB-read) condition. This flaw can be exploited by adversaries to perform unauthorized memory accesses, exposing applications to various security risks. The vulnerability has been addressed in version 1.24.10.

Affected Version(s)

gstreamer < 1.24.10

References

https://securitylab.github.com/advisories/GHSL-2024-242_G...
x_refsource_CONFIRM
https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merg...
x_refsource_MISC
https://gstreamer.freedesktop.org/security/sa-2024-0010.html
x_refsource_MISC

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

JSON
.