vulnerability

CentOS Linux: CVE-2018-7263: Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update (CESA-2020:1631)

Try Surface Command
Back to search
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
2018-02-20
Added
2020-04-29
Modified
2023-05-25

Description

The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.

Solution(s)

centos-upgrade-gstreamer1centos-upgrade-gstreamer1-debuginfocentos-upgrade-gstreamer1-debugsourcecentos-upgrade-gstreamer1-develcentos-upgrade-gstreamer1-plugins-bad-freecentos-upgrade-gstreamer1-plugins-bad-free-debuginfocentos-upgrade-gstreamer1-plugins-bad-free-debugsourcecentos-upgrade-gstreamer1-plugins-basecentos-upgrade-gstreamer1-plugins-base-debuginfocentos-upgrade-gstreamer1-plugins-base-debugsourcecentos-upgrade-gstreamer1-plugins-base-develcentos-upgrade-gstreamer1-plugins-base-tools-debuginfocentos-upgrade-gstreamer1-plugins-goodcentos-upgrade-gstreamer1-plugins-good-debuginfocentos-upgrade-gstreamer1-plugins-good-debugsourcecentos-upgrade-gstreamer1-plugins-good-gtkcentos-upgrade-gstreamer1-plugins-good-gtk-debuginfocentos-upgrade-gstreamer1-plugins-ugly-freecentos-upgrade-gstreamer1-plugins-ugly-free-debuginfocentos-upgrade-gstreamer1-plugins-ugly-free-debugsourcecentos-upgrade-libmadcentos-upgrade-libmad-debuginfocentos-upgrade-libmad-debugsourcecentos-upgrade-orccentos-upgrade-orc-compilercentos-upgrade-orc-compiler-debuginfocentos-upgrade-orc-debuginfocentos-upgrade-orc-debugsourcecentos-upgrade-orc-develcentos-upgrade-sdlcentos-upgrade-sdl-debuginfocentos-upgrade-sdl-debugsourcecentos-upgrade-sdl-devel

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today