CVE-2016-9447

Description

The ROM mappings in the NSF decoder in gstreamer 0.10.x allow remote attackers to cause a denial of service (out-of-bounds read or write) and possibly execute arbitrary code via a crafted NSF music file.

CVSS Metrics

• v3.0•HIGH•Score: 7.8CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 0.48%• Percentile: 66%

Techniques & Countermeasures

• CWE-125•Out-of-bounds Read

  The product reads data past the end, or before the beginning, of the intended buffer.

• CWE-787•Out-of-bounds Write

  The product writes data past the end, or before the beginning, of the intended buffer.

Affected Systems

• gstreamer_project•gstreamer

  0.10.0 | 0.10.1 | 0.10.2 | 0.10.3 | 0.10.4 | 0.10.5 | 0.10.6 | 0.10.7 | 0.10.8 | 0.10.9 | 0.10.10 | 0.10.11 | 0.10.12 | 0.10.13 | 0.10.14 | 0.10.15 | 0.10.16 | 0.10.17 | 0.10.18 | 0.10.19 | 0.10.20 | 0.10.21 | 0.10.22 | 0.10.23 | 0.10.24 | 0.10.25 | 0.10.26 | 0.10.27 | 0.10.28 | 0.10.29 | 0.10.30 | 0.10.31 | 0.10.32 | 0.10.33 | 0.10.34 | 0.10.35 | 0.10.36

• gstreamer•gstreamer

  0.10.0 | 0.10.1 | 0.10.2 | 0.10.3 | 0.10.4 | 0.10.5 | 0.10.6 | 0.10.7 | 0.10.8 | 0.10.9 | 0.10.10 | 0.10.11 | 0.10.12 | 0.10.13 | 0.10.14 | 0.10.15 | 0.10.16 | 0.10.17 | 0.10.18 | 0.10.19 | 0.10.20 | 0.10.21 | 0.10.22 | 0.10.23 | 0.10.24 | 0.10.25 | 0.10.26 | 0.10.27 | 0.10.28 | 0.10.29 | 0.10.30 | 0.10.31 | 0.10.32 | 0.10.33 | 0.10.34 | 0.10.35 | 0.10.36

References (7)

• http://www.openwall.com/lists/oss-security/2016/11/18/13
• http://rhn.redhat.com/errata/RHSA-2017-0018.html
• http://www.openwall.com/lists/oss-security/2016/11/18/12
• http://scarybeastsecurity.blogspot.de/2016/11/0day-exploit-compromising-linux-desktop.html
• http://www.securityfocus.com/bid/94427
• http://rhn.redhat.com/errata/RHSA-2016-2974.html
• https://security.gentoo.org/glsa/201705-10