CVE-2016-9812 - OpenCVE

The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Gstreamer	Gstreamer

Configuration 1 [-]

cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:*

References

Link	Resource
http://rhn.redhat.com/errata/RHSA-2017-0021.html
http://www.debian.org/security/2017/dsa-3818
http://www.openwall.com/lists/oss-security/2016/12/01/2
http://www.openwall.com/lists/oss-security/2016/12/05/8
http://www.securityfocus.com/bid/95160
https://bugzilla.gnome.org/show_bug.cgi?id=775048
https://gstreamer.freedesktop.org/releases/1.10/#1.10.2
https://security.gentoo.org/glsa/201705-10

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-01-13T16:00:00

Updated: 2018-01-04T19:57:01

Reserved: 2016-12-04T00:00:00

Link: CVE-2016-9812

JSON object: View

NVD Information

Status : Modified

Published: 2017-01-13T16:59:01.323

Modified: 2018-01-05T02:31:23.980

Link: CVE-2016-9812

JSON object: View

Redhat Information

No data.

CWE

CWE-125

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-11-24T00:00:00", "descriptions": [{"lang": "en", "value": "The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-04T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "DSA-3818", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2017/dsa-3818"}, {"name": "RHSA-2017:0021", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2017-0021.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.gnome.org/show_bug.cgi?id=775048"}, {"name": "95160", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/95160"}, {"name": "[oss-security] 20161204 Re: gstreamer multiple issues", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/12/05/8"}, {"name": "GLSA-201705-10", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201705-10"}, {"name": "[oss-security] 20161201 gstreamer multiple issues", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/12/01/2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-9812", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "DSA-3818", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2017/dsa-3818"}, {"name": "RHSA-2017:0021", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2017-0021.html"}, {"name": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2", "refsource": "CONFIRM", "url": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2"}, {"name": "https://bugzilla.gnome.org/show_bug.cgi?id=775048", "refsource": "CONFIRM", "url": "https://bugzilla.gnome.org/show_bug.cgi?id=775048"}, {"name": "95160", "refsource": "BID", "url": "http://www.securityfocus.com/bid/95160"}, {"name": "[oss-security] 20161204 Re: gstreamer multiple issues", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/12/05/8"}, {"name": "GLSA-201705-10", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201705-10"}, {"name": "[oss-security] 20161201 gstreamer multiple issues", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/12/01/2"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-9812", "datePublished": "2017-01-13T16:00:00", "dateReserved": "2016-12-04T00:00:00", "dateUpdated": "2018-01-04T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:*", "matchCriteriaId": "E205DF55-52AD-46B7-B83E-2FDB322A52A2", "versionEndIncluding": "1.10.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section."}, {"lang": "es", "value": "La funci\u00f3n gst_mpegts_section_new en el decodificador mpegts en GStreamer en versiones anteriores a 1.10.2 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (lectura fuera de los l\u00edmites) a trav\u00e9s de una secci\u00f3n demasiado peque\u00f1a."}], "id": "CVE-2016-9812", "lastModified": "2018-01-05T02:31:23.980", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-01-13T16:59:01.323", "references": [{"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2017-0021.html"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2017/dsa-3818"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2016/12/01/2"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2016/12/05/8"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/95160"}, {"source": "cve@mitre.org", "url": "https://bugzilla.gnome.org/show_bug.cgi?id=775048"}, {"source": "cve@mitre.org", "url": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201705-10"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}]}