CVE-2024-47540 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2024-47540

CVE-2024-47540

December 11, 2024

GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gst_matroska_demux_add_wvpk_header function within matroska-demux.c. When size < 4, the program calls gst_buffer_unmap with an uninitialized map variable. Then, in the gst_memory_unmap function, the program will attempt to unmap the buffer using the uninitialized map variable, causing a function pointer hijack, as it will jump to mem->allocator->mem_unmap_full or mem->allocator->mem_unmap. This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. This vulnerability is fixed in 1.24.10.

Related Resources (5)

https://securitylab.github.com/advisories/GHSL-2024-197_GStreamer/

https://gstreamer.freedesktop.org/security/sa-2024-0017.html

https://lists.debian.org/debian-lts-announce/2025/02/msg00035.html

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057.patch

https://security-tracker.debian.org/tracker/CVE-2024-47540

Do you need more information?

CVSS v4

Base Score:

8.6

Attack Vector

LOCAL

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

HIGH

Vulnerable System Integrity

HIGH

Vulnerable System Availability

HIGH

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Weakness Type (CWE)

Use of Uninitialized Resource

CWE-908

Use of Uninitialized Variable

CWE-457

EPSS

Base Score:

0.42

Products

Solutions

Resources

Company

Compare

Developer Tools