CVE-2016-9811

Priority
Description
The windows_icon_typefind function in gst-plugins-base in GStreamer before
1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to
cause a denial of service (out-of-bounds read) via a crafted ico file.
Notes
Package
Upstream:needs-triage
Ubuntu 14.04 ESM:DNE (trusty was released [0.10.36-1.1ubuntu2.1])
Patches:
Package
Upstream:released (1.10.2-1)
Ubuntu 16.04 ESM:released (1.8.3-1ubuntu0.2)
Ubuntu 14.04 ESM:DNE (trusty was released [1.2.4-1~ubuntu2.1])
Patches:
Upstream:https://github.com/GStreamer/gst-plugins-base/commit/2fdccfd64fc609e44e9c4b8eed5bfdc0ab9c9095
More Information

Updated: 2022-04-13 12:44:21 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)