Gstreamer Denial Of Service Execute Code Overflow Vulnerability
10 Jul. 2017
Summary
Gstreamer is prone to a denial of service (DoS) vulnerability.This allow a remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources via certain vulnerable vectors.
Vulnerable Systems:
* Linux 8
* Gstreamer 1.10.1
* Redhat Enterprise Linux Desktop 6
* Redhat Enterprise Linux Hpc Node 6
* Redhat Enterprise Linux Server 6
* Redhat Enterprise Linux Workstation 6
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'skip count' that goes beyond initialized buffer.