GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:11122 https://access.redhat.com/errata/RHSA-2024:11122
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:11119 https://access.redhat.com/errata/RHSA-2024:11119
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2024:11121 https://access.redhat.com/errata/RHSA-2024:11121
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2024:11148 https://access.redhat.com/errata/RHSA-2024:11148
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2024:11149 https://access.redhat.com/errata/RHSA-2024:11149
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2024:11298 https://access.redhat.com/errata/RHSA-2024:11298
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:11299 https://access.redhat.com/errata/RHSA-2024:11299
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2024:11344 https://access.redhat.com/errata/RHSA-2024:11344
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Via RHSA-2024:11346 https://access.redhat.com/errata/RHSA-2024:11346
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:11348 https://access.redhat.com/errata/RHSA-2024:11348