Multiple use-after-free vulnerabilities in the (1) gst_mini_object_unref, (2) gst_tag_list_unref, and (3) gst_mxf_demux_update_essence_tracks functions in GStreamer before 1.10.3 allow remote attackers to cause a denial of service (crash) via vectors involving stream tags, as demonstrated by 02785736.mxf.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-02-09T15:00:00

Updated: 2024-08-05T15:11:48.846Z

Reserved: 2017-02-01T00:00:00

Link: CVE-2017-5843

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-02-09T15:59:01.567

Modified: 2024-11-21T03:28:30.353

Link: CVE-2017-5843

cve-icon Redhat

Severity : Low

Publid Date: 2017-01-19T00:00:00Z

Links: CVE-2017-5843 - Bugzilla