GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264 video data in an m4v file.
History

Tue, 22 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
Vendors & Products Mozilla firefox Esr

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2015-05-14T10:00:00

Updated: 2024-08-06T04:26:10.193Z

Reserved: 2015-01-07T00:00:00

Link: CVE-2015-0797

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-05-14T10:59:00.070

Modified: 2024-11-21T02:23:43.737

Link: CVE-2015-0797

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-05-12T00:00:00Z

Links: CVE-2015-0797 - Bugzilla