CVE-2009-0398

GStreamer Plug-ins 0.6.0 - Buffer Overflow in QuickTime Media File Handler

Title source: llm
STIX 2.1

Description

Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.

References (4)

Core 4
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-0269.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33830
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9886
Exploit mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/01/29/3

Scores

EPSS 0.0319
EPSS Percentile 86.6%

Details

CWE
CWE-119
Status published
Products (1)
gstreamer/plug-ins 0.6.0
Published Feb 03, 2009
Tracked Since Feb 18, 2026