CVE-2009-0397
Publication date 3 February 2009
Last updated 24 July 2024
Ubuntu priority
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample (aka stts) atom data in a malformed QuickTime media .mov file.
Status
Package | Ubuntu Release | Status |
---|---|---|
gst-plugins-bad0.10 | ||
gst-plugins-good0.10 | ||
gst-plugins0.8 | ||