GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of X-QDM RTP payloads. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28851.
This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:6259 https://access.redhat.com/errata/RHSA-2026:6259
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:6300 https://access.redhat.com/errata/RHSA-2026:6300
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:6750 https://access.redhat.com/errata/RHSA-2026:6750
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2026:7673 https://access.redhat.com/errata/RHSA-2026:7673
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2026:7850 https://access.redhat.com/errata/RHSA-2026:7850
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2026:8876 https://access.redhat.com/errata/RHSA-2026:8876
This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:8854 https://access.redhat.com/errata/RHSA-2026:8854
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:8874 https://access.redhat.com/errata/RHSA-2026:8874
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2026:8857 https://access.redhat.com/errata/RHSA-2026:8857
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:8862 https://access.redhat.com/errata/RHSA-2026:8862
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Via RHSA-2026:9446 https://access.redhat.com/errata/RHSA-2026:9446
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2026:9447 https://access.redhat.com/errata/RHSA-2026:9447
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2026:9487 https://access.redhat.com/errata/RHSA-2026:9487
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:9488 https://access.redhat.com/errata/RHSA-2026:9488