Integer Underflow in GStreamer Library Affects Media Applications
CVE-2024-47606

8.6HIGH

Key Information:

Vendor: Gstreamer
Status: Gstreamer
Vendor: CVE Published:; 12 December 2024

What is CVE-2024-47606?

An integer underflow vulnerability has been detected in the GStreamer library, specifically within the function qtdemux_parse_theora_extension in qtdemux.c. The flaw arises when an underflow occurs in the gint size variable, causing it to hold an excessively large unintended value upon being cast to an unsigned integer. This negative 32-bit value is then improperly cast to a 64-bit unsigned integer during the execution of the gst_buffer_new_and_alloc function. The subsequent memory allocation attempt results in insufficient memory being allocated, exacerbating the issue. During the gst_buffer_fill operation, data from input files could potentially overwrite critical structures in memory, leading to a critical situation where function pointers may be hijacked. This vulnerability has been addressed in version 1.24.10 of GStreamer.

Affected Version(s)

gstreamer < 1.24.10

References

https://securitylab.github.com/advisories/GHSL-2024-166_G...

x_refsource_CONFIRM

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merg...

x_refsource_MISC

https://gstreamer.freedesktop.org/security/sa-2024-0014.html

x_refsource_MISC

CVSS V4

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2024

Gstreamer

What is CVE-2024-47606?

Affected Version(s)

References

CVSS V4

Timeline