ID CVE-2017-5848
Summary The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.
References
Vulnerable Configurations
  • cpe:2.3:a:gstreamer_project:gstreamer:*:*:*:*:*:*:*:*
    cpe:2.3:a:gstreamer_project:gstreamer:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 05-01-2018 - 02:31)
Impact:
Exploitability:
CWE CWE-125
CAPEC
  • Infiltration of Hardware Development Environment
    An attacker, leveraging the ability to manipulate components of primary support systems and tools within the development and production environments, inserts malicious software within the hardware and/or firmware development environment. The infiltration purpose is to alter developed hardware components in a system destined for deployment at the victim's organization, for the purpose of disruption or further compromise.
  • Overread Buffers
    An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
redhat via4
advisories
bugzilla
id 1430051
title rebase orc to 0.4.26
oval
AND
  • OR
    • comment Red Hat Enterprise Linux 7 Client is installed
      oval oval:com.redhat.rhba:tst:20150364001
    • comment Red Hat Enterprise Linux 7 Server is installed
      oval oval:com.redhat.rhba:tst:20150364002
    • comment Red Hat Enterprise Linux 7 Workstation is installed
      oval oval:com.redhat.rhba:tst:20150364003
    • comment Red Hat Enterprise Linux 7 ComputeNode is installed
      oval oval:com.redhat.rhba:tst:20150364004
  • OR
    • AND
      • comment orc is earlier than 0:0.4.26-1.el7
        oval oval:com.redhat.rhsa:tst:20172060007
      • comment orc is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhba:tst:20152116088
    • AND
      • comment orc-compiler is earlier than 0:0.4.26-1.el7
        oval oval:com.redhat.rhsa:tst:20172060009
      • comment orc-compiler is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhba:tst:20152116090
    • AND
      • comment orc-devel is earlier than 0:0.4.26-1.el7
        oval oval:com.redhat.rhsa:tst:20172060005
      • comment orc-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhba:tst:20152116086
    • AND
      • comment orc-doc is earlier than 0:0.4.26-1.el7
        oval oval:com.redhat.rhsa:tst:20172060011
      • comment orc-doc is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhba:tst:20152116092
    • AND
      • comment gstreamer-plugins-good is earlier than 0:0.10.31-13.el7
        oval oval:com.redhat.rhsa:tst:20172060013
      • comment gstreamer-plugins-good is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162975006
    • AND
      • comment gstreamer-plugins-good-devel-docs is earlier than 0:0.10.31-13.el7
        oval oval:com.redhat.rhsa:tst:20172060015
      • comment gstreamer-plugins-good-devel-docs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20170019008
    • AND
      • comment gstreamer-plugins-bad-free is earlier than 0:0.10.23-23.el7
        oval oval:com.redhat.rhsa:tst:20172060019
      • comment gstreamer-plugins-bad-free is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162974006
    • AND
      • comment gstreamer-plugins-bad-free-devel is earlier than 0:0.10.23-23.el7
        oval oval:com.redhat.rhsa:tst:20172060017
      • comment gstreamer-plugins-bad-free-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162974008
    • AND
      • comment gstreamer-plugins-bad-free-devel-docs is earlier than 0:0.10.23-23.el7
        oval oval:com.redhat.rhsa:tst:20172060021
      • comment gstreamer-plugins-bad-free-devel-docs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162974012
    • AND
      • comment clutter-gst2 is earlier than 0:2.0.18-1.el7
        oval oval:com.redhat.rhsa:tst:20172060023
      • comment clutter-gst2 is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060024
    • AND
      • comment clutter-gst2-devel is earlier than 0:2.0.18-1.el7
        oval oval:com.redhat.rhsa:tst:20172060025
      • comment clutter-gst2-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060026
    • AND
      • comment gnome-video-effects is earlier than 0:0.4.3-1.el7
        oval oval:com.redhat.rhsa:tst:20172060027
      • comment gnome-video-effects is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060028
    • AND
      • comment gstreamer1-plugins-base is earlier than 0:1.10.4-1.el7
        oval oval:com.redhat.rhsa:tst:20172060031
      • comment gstreamer1-plugins-base is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060032
    • AND
      • comment gstreamer1-plugins-base-devel is earlier than 0:1.10.4-1.el7
        oval oval:com.redhat.rhsa:tst:20172060033
      • comment gstreamer1-plugins-base-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060034
    • AND
      • comment gstreamer1-plugins-base-devel-docs is earlier than 0:1.10.4-1.el7
        oval oval:com.redhat.rhsa:tst:20172060035
      • comment gstreamer1-plugins-base-devel-docs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060036
    • AND
      • comment gstreamer1-plugins-base-tools is earlier than 0:1.10.4-1.el7
        oval oval:com.redhat.rhsa:tst:20172060029
      • comment gstreamer1-plugins-base-tools is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060030
    • AND
      • comment gstreamer1 is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060039
      • comment gstreamer1 is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060040
    • AND
      • comment gstreamer1-devel is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060037
      • comment gstreamer1-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060038
    • AND
      • comment gstreamer1-devel-docs is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060041
      • comment gstreamer1-devel-docs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060042
    • AND
      • comment gstreamer1-plugins-good is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060043
      • comment gstreamer1-plugins-good is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20170020006
    • AND
      • comment gstreamer1-plugins-bad-free is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060049
      • comment gstreamer1-plugins-bad-free is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20170021006
    • AND
      • comment gstreamer1-plugins-bad-free-devel is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060045
      • comment gstreamer1-plugins-bad-free-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20170021008
    • AND
      • comment gstreamer1-plugins-bad-free-gtk is earlier than 0:1.10.4-2.el7
        oval oval:com.redhat.rhsa:tst:20172060047
      • comment gstreamer1-plugins-bad-free-gtk is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20172060048
rhsa
id RHSA-2017:2060
released 2017-08-01
severity Moderate
title RHSA-2017:2060: GStreamer security, bug fix, and enhancement update (Moderate)
rpms
  • orc-0:0.4.26-1.el7
  • orc-compiler-0:0.4.26-1.el7
  • orc-devel-0:0.4.26-1.el7
  • orc-doc-0:0.4.26-1.el7
  • gstreamer-plugins-good-0:0.10.31-13.el7
  • gstreamer-plugins-good-devel-docs-0:0.10.31-13.el7
  • gstreamer-plugins-bad-free-0:0.10.23-23.el7
  • gstreamer-plugins-bad-free-devel-0:0.10.23-23.el7
  • gstreamer-plugins-bad-free-devel-docs-0:0.10.23-23.el7
  • clutter-gst2-0:2.0.18-1.el7
  • clutter-gst2-devel-0:2.0.18-1.el7
  • gnome-video-effects-0:0.4.3-1.el7
  • gstreamer1-plugins-base-0:1.10.4-1.el7
  • gstreamer1-plugins-base-devel-0:1.10.4-1.el7
  • gstreamer1-plugins-base-devel-docs-0:1.10.4-1.el7
  • gstreamer1-plugins-base-tools-0:1.10.4-1.el7
  • gstreamer1-0:1.10.4-2.el7
  • gstreamer1-devel-0:1.10.4-2.el7
  • gstreamer1-devel-docs-0:1.10.4-2.el7
  • gstreamer1-plugins-good-0:1.10.4-2.el7
  • gstreamer1-plugins-bad-free-0:1.10.4-2.el7
  • gstreamer1-plugins-bad-free-devel-0:1.10.4-2.el7
  • gstreamer1-plugins-bad-free-gtk-0:1.10.4-2.el7
refmap via4
bid 96001
confirm https://bugzilla.gnome.org/show_bug.cgi?id=777957#c3
debian DSA-3818
gentoo GLSA-201705-10
mlist
  • [oss-security] 20170201 Multiple memory access issues in gstreamer
  • [oss-security] 20170202 Re: Multiple memory access issues in gstreamer
Last major update 05-01-2018 - 02:31
Published 09-02-2017 - 15:59
Back to Top