Home

CVE-2015-0797

Description

GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264 video data in an m4v file.

Risk Information

Base Score
8.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
7.609

Associated Vulnerability

VulnerabilityOS Platform
Update for SeaMonkey (2.35)Windows
Update for Mozilla Firefox ESR (38.1.0)Windows
Update for Mozilla Firefox ESR (38.1.1)Windows
Update for Mozilla Firefox ESR (38.2)Windows
Update for Mozilla Firefox ESR (38.2.1)Windows
Update for Mozilla Firefox ESR (38.3.0)Windows
Update for Mozilla Firefox ESR (38.4.0)Windows
Update for Mozilla Firefox ESR (38.5.0)Windows
Update for Mozilla Firefox ESR (38.5.1)Windows
Update for Mozilla Firefox ESR (38.5.2)Windows
Update for Mozilla Firefox ESR (38.6.0)Windows
Update for Mozilla Firefox ESR (38.6.1)Windows
Update for Mozilla Firefox ESR (38.7.0)Windows
Multiple Vulnerabilities are affected in Mozilla Firefox 37.0.2Windows
Vulnerability CVE-2015-0797 are affected in GStreamer 1.4.4Windows
iceweasel security update(DSA-3559-1) iceweasel_38.8.0esr-1~deb8u1_amd64.debLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) gstreamer-0_10-plugins-bad-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) gstreamer-0_10-plugins-bad-lang-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstbasecamerabinsrc-0_10-0-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstbasecamerabinsrc-0_10-0-32bit-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstbasevideo-0_10-0-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstbasevideo-0_10-0-32bit-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstphotography-0_10-0-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstphotography-0_10-0-32bit-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstsignalprocessor-0_10-0-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstsignalprocessor-0_10-0-32bit-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstvdp-0_10-0-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0921-1(SUSE Linux Enterprise Desktop 11 SP3 ) libgstvdp-0_10-0-32bit-0.10.22-7.11.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) gstreamer-0_10-plugins-bad-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) gstreamer-0_10-plugins-bad-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) gstreamer-0_10-plugins-bad-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) gstreamer-0_10-plugins-bad-debugsource-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) gstreamer-0_10-plugins-bad-lang-0.10.23-17.1.noarch.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasecamerabinsrc-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasecamerabinsrc-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasecamerabinsrc-0_10-23-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasevideo-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasevideo-0_10-23-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasevideo-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstbasevideo-0_10-23-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstcodecparsers-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstcodecparsers-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstphotography-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstphotography-0_10-23-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstphotography-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstphotography-0_10-23-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstsignalprocessor-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstsignalprocessor-0_10-23-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstsignalprocessor-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstsignalprocessor-0_10-23-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstvdp-0_10-23-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstvdp-0_10-23-32bit-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstvdp-0_10-23-debuginfo-0.10.23-17.1.x86_64.rpmLinux
SUSE-SU-2015:0942-1(SUSE Linux Enterprise Desktop 12 ) libgstvdp-0_10-23-debuginfo-32bit-0.10.23-17.1.x86_64.rpmLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-301494Update for SeaMonkey (2.35)
PATCH-302079Update for Mozilla Firefox ESR (38.1.0)
PATCH-302171Update for Mozilla Firefox ESR (38.1.1)
PATCH-302283Update for Mozilla Firefox ESR (38.2)
PATCH-302284Update for Mozilla Firefox ESR (38.2.1)
PATCH-302285Update for Mozilla Firefox ESR (38.3.0)
PATCH-302286Update for Mozilla Firefox ESR (38.4.0)
PATCH-302287Update for Mozilla Firefox ESR (38.5.0)
PATCH-302288Update for Mozilla Firefox ESR (38.5.1)
PATCH-302289Update for Mozilla Firefox ESR (38.5.2)
PATCH-302290Update for Mozilla Firefox ESR (38.6.0)
PATCH-302291Update for Mozilla Firefox ESR (38.6.1)
PATCH-302292Update for Mozilla Firefox ESR (38.7.0)
PATCH-343015Mozilla Firefox (132.0.2)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234