CVE-2024-47613
Description
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been identified in `gst_gdk_pixbuf_dec_flush` within `gstgdkpixbufdec.c`. This function invokes `memcpy`, using `out_pix` as the destination address. `out_pix` is expected to point to the frame 0 from the frame structure, which is read from the input file. However, in certain situations, it can points to a NULL frame, causing the subsequent call to `memcpy` to attempt writing to the null address (0x00), leading to a null pointer dereference. This vulnerability can result in a Denial of Service (DoS) by triggering a segmentation fault (SEGV). This vulnerability is fixed in 1.24.10.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Description gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush Red Hat statement To exploit this flaw, an attacker needs to trick a user into opening or processing a specially crafted file with the gdk-pixbuf decoder. As user interaction is required to trigger is issue and the impact is limited to an application crash, this flaw has been rated with a Moderate severity.โฆ
Description
gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush
Red Hat statement
To exploit this flaw, an attacker needs to trick a user into opening or processing a specially crafted file with the gdk-pixbuf decoder. As user interaction is required to trigger is issue and the impact is limited to an application crash, this flaw has been rated with a Moderate severity.
CVSS v3: 6.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
Errata / fixed releases
| Product | Package | Advisory | Released |
|---|---|---|---|
| Red Hat Enterprise Linux 7 Extended Lifecycle Support | gstreamer1-plugins-base-0:1.10.4-3.el7_9 | RHSA-2024:11344 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 7 Extended Lifecycle Support | gstreamer1-plugins-good-0:1.10.4-3.el7_9 | RHSA-2024:11344 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8 | gstreamer1-plugins-good-0:1.16.1-5.el8_10 | RHSA-2024:11299 | 2024-12-17T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | gstreamer1-plugins-good-0:1.16.1-2.el8_2 | RHSA-2024:11148 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | gstreamer1-plugins-good-0:1.16.1-3.el8_4 | RHSA-2024:11346 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | gstreamer1-plugins-good-0:1.16.1-3.el8_4 | RHSA-2024:11346 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | gstreamer1-plugins-good-0:1.16.1-3.el8_4 | RHSA-2024:11346 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | gstreamer1-plugins-good-0:1.16.1-3.el8_6 | RHSA-2024:11149 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.6 Telecommunications Update Service | gstreamer1-plugins-good-0:1.16.1-3.el8_6 | RHSA-2024:11149 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | gstreamer1-plugins-good-0:1.16.1-3.el8_6 | RHSA-2024:11149 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 8.8 Extended Update Support | gstreamer1-plugins-good-0:1.16.1-4.el8_8 | RHSA-2024:11348 | 2024-12-18T00:00:00Z |
| Red Hat Enterprise Linux 9 | gstreamer1-plugins-good-0:1.22.1-3.el9_5 | RHSA-2024:11122 | 2024-12-16T00:00:00Z |
| Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | gstreamer1-plugins-good-0:1.18.4-6.el9_0 | RHSA-2024:11298 | 2024-12-17T00:00:00Z |
| Red Hat Enterprise Linux 9.2 Extended Update Support | gstreamer1-plugins-good-0:1.18.4-7.el9_2 | RHSA-2024:11119 | 2024-12-16T00:00:00Z |
| Red Hat Enterprise Linux 9.4 Extended Update Support | gstreamer1-plugins-good-0:1.22.1-3.el9_4 | RHSA-2024:11121 | 2024-12-16T00:00:00Z |
Package state
| Product | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 10 | gstreamer1-plugins-good | Affected |
Apply commands
yum update -y gstreamer1-plugins-base
# or:
dnf upgrade -y gstreamer1-plugins-baseAffected
| Vendor | Product | Version |
|---|---|---|
| redhat | Red Hat Enterprise Linux 10 | Affected |
OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| โ | Affected | โ |
Debian Fixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 1.24.10-1 |
| sid | Fixed | 1.24.10-1 |
| forky | Fixed | 1.24.10-1 |
| bullseye | Fixed | 1.18.4-2+deb11u3 |
| bookworm | Fixed | 1.22.0-5+deb12u2 |
Red Hat Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | โ |
| 8 | Fixed | โ |
Rocky Linux Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | โ |
| 8 | Fixed | โ |
References
- https://access.redhat.com/errata/RHSA-2024:11122
- https://errata.rockylinux.org/RLSA-2024:11299
- https://security-tracker.debian.org/tracker/CVE-2024-47613
- https://www.suse.com/security/cve/CVE-2024-47613.html
- https://errata.rockylinux.org/RLSA-2024:11122
- https://access.redhat.com/errata/RHSA-2024:11299
- https://bugzilla.redhat.com/2331719
- https://bugzilla.redhat.com/2331722
- https://bugzilla.redhat.com/2331726
- https://bugzilla.redhat.com/2331753
- https://bugzilla.redhat.com/2331760
- https://errata.almalinux.org/8/ALSA-2024-11299.html
- https://errata.almalinux.org/9/ALSA-2024-11122.html
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.