GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of tile list data within AV1-encoded video files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22873.

An update of the gstreamer package has been released.

The remote Fedora 39 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-919bc7e512 advisory.

    Update to gstreamer-1.22.9.

    ----

    Backport fix for CVE-2024-0444.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-73f181db2a advisory.

    Update to 1.26.19, fixes CVE-2024-0444.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-da86a4f061 advisory.

    Update to 1.26.19, fixes CVE-2024-0444.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of gstreamer1-plugins-bad-free installed on the remote host is prior to 1.18.4-5. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2454 advisory.

  - GStreamer-SA-2024-0001: AV1 codec parser potential buffer overflow during tile list parsing     (CVE-2024-0444)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5608 advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
204354	Photon OS 5.0: Gstreamer PHSA-2023-5.0-0167	Nessus	PhotonOS Local Security Checks	high
204259	Photon OS 4.0: Gstreamer PHSA-2023-4.0-0523	Nessus	PhotonOS Local Security Checks	high
201176	Fedora 39 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2024-919bc7e512)	Nessus	Fedora Local Security Checks	high
201166	Fedora 39 : mingw-python-urllib3 (2024-73f181db2a)	Nessus	Fedora Local Security Checks	high
201165	Fedora 40 : mingw-python-urllib3 (2024-da86a4f061)	Nessus	Fedora Local Security Checks	high
190693	Amazon Linux 2 : gstreamer1-plugins-bad-free (ALAS-2024-2454)	Nessus	Amazon Linux Local Security Checks	high
189723	Debian dsa-5608 : gir1.2-gst-plugins-bad-1.0 - security update	Nessus	Debian Local Security Checks	high

Detections

Analytics

CVE-2024-0444

high

Tenable Plugins

high

high

high

high

high

high

high