CNNVD-202508-710 Information

CNNVD ID

CNNVD-202508-710

Related CVE

CVE-2025-47806

• CNNVD Published: 2025-08-07

Description (Chinese)

GStreamer是GStreamer开源的一套用于处理流媒体的框架。 GStreamer 1.26.1及之前版本存在安全漏洞，该漏洞源于parse_subrip_time函数存在越界写入，可能导致崩溃。

Description (English)

GStreamer is an open-source framework for processing streaming media. There is a security loophole in GStreamer 1.26.1 and earlier versions, which stems from the cross-border writing of the Parse subrip time function, which could lead to a breakdown.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GStreamer

Published

2025-08-07

Last Modified

2026-02-24

References

https://gstreamer.freedesktop.org/security/ https://github.com/atredispartners/advisories/blob/master/2025/ATREDIS-2025-0003.md https://vigilance.fr/vulnerability/GStreamer-buffer-overflow-via-SubRip-Subtitle-Parser-47482

Patch

https://gstreamer.freedesktop.org/