Bug 2254589 (CVE-2023-40476, ZDI-CAN-21768) - CVE-2023-40476 gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite
Summary: CVE-2023-40476 gstreamer-plugins-bad: Integer overflow in H.265 video parser ...
Status: NEW
Alias: CVE-2023-40476, ZDI-CAN-21768
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Product Security
QA Contact:
Depends On:
Blocks: 2254564
TreeView+ depends on / blocked
Reported: 2023-12-14 17:46 UTC by Patrick Del Bello
Modified: 2023-12-19 05:27 UTC (History)
1 user (show)

Fixed In Version: gstreamer-plugins-bad 1.22.6
Doc Type: If docs needed, set a value
Doc Text:
A stack-based buffer overflow was found in the GStreamer Plugins Bad when handling malformed files with H.265 video streams. This issue requires user interaction with the library and may allow a malicious user to cause an integer overflow before allocating the buffer, triggering a crash or code execution via heap manipulation, executing code in the context of the current process.
Clone Of:
Last Closed:

Attachments (Terms of Use)

Description Patrick Del Bello 2023-12-14 17:46:55 UTC
Stack-based buffer overflow in the H.265 video parser when handling malformed H.265 video streams in GStreamer versions before 1.22.6
It is possible for a malicious third party to trigger a crash in the application, and possibly also effect code execution through stack manipulation.


Note You need to log in before you can comment on or make changes to this bug.