CVE-2016-9635

Name
CVE-2016-9635
Description
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'skip count' that goes beyond initialized buffer.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2975.html
cve@mitre.org http://rhn.redhat.com/errata/RHSA-2017-0019.html
cve@mitre.org http://rhn.redhat.com/errata/RHSA-2017-0020.html
Third Party Advisory http://www.debian.org/security/2016/dsa-3723
Third Party Advisory http://www.debian.org/security/2016/dsa-3724
Mailing List http://www.openwall.com/lists/oss-security/2016/11/24/2
Third Party Advisory http://www.securityfocus.com/bid/94499
Issue Tracking https://bugzilla.gnome.org/show_bug.cgi?id=774834
Release Notes https://gstreamer.freedesktop.org/releases/1.10/#1.10.2
Exploit https://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-advancing-exploitation.html
cve@mitre.org https://security.gentoo.org/glsa/201705-10

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:* gstreamer >= None <= 1.10.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
gst-plugins-good edge-community 1.10.4-r0 None fixed
gst-plugins-good 3.22-community 1.10.4-r0 None fixed
gst-plugins-good 3.21-community 1.10.4-r0 None fixed
gst-plugins-good 3.20-community 1.10.4-r0 None fixed
gst-plugins-good 3.19-community 1.10.4-r0 None fixed
gst-plugins-good 3.18-community 1.10.4-r0 None fixed
gst-plugins-good 3.17-community 1.10.4-r0 None fixed