[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-5839":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T14:55:36.164Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":49,"related":50,"reserved_at":9,"published_at":54,"modified_at":55,"state":56,"summary":57,"references_raw":66,"kevs":112,"epss":113,"epss_history":116,"metrics":374,"affected":384},"CVE-2017-5839","The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service (stack overflow and crash) via vectors involving nested WAVEFORMATEX.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-674","Uncontrolled Recursion","The product does not properly control the amount of recursion that takes place,  consuming excessive resources, such as allocated memory or the program stack.","weakness","Draft","Class",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-230","Serialized Data with Nested Payloads",[],{"id":24,"name":25,"techniques":26},"CAPEC-231","Oversized Serialized Data Payloads",[],[],[],[],[31,33,35,37,39,41,43,45,47],{"_key":32},"ALPINE-CVE-2017-5839",{"_key":34},"SUSE-SU-2017:1039-1",{"_key":36},"SUSE-SU-2017:1041-1",{"_key":38},"DSA-3819-1",{"_key":40},"MGASA-2017-0320",{"_key":42},"UBUNTU-CVE-2017-5839",{"_key":44},"USN-3244-1",{"_key":46},"DEBIAN-CVE-2017-5839",{"_key":48},"RHSA-2017:2060",[],[51,52,53],{"_key":34},{"_key":36},{"_key":40},"2017-02-09T15:00:00.000Z","2024-08-05T15:11:48.656Z","Modified",{"cisa_kev":58,"cisa_ransomware":58,"cisa_vendor":9,"epss_severity":59,"epss_score":60,"severity":61,"severity_score":62,"severity_version":63,"severity_source":64,"severity_vector":65,"severity_status":56},false,"low",0.04327,"high",7.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[67,75,81,86,92,98,103,108],{"url":68,"sources":69,"tags":71},"http://www.securityfocus.com/bid/96001",[70,64],"cve.org",[72,73,74],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":76,"sources":77,"tags":78},"http://www.debian.org/security/2017/dsa-3819",[70,64],[79,80],"Vendor Advisory","X Refsource DEBIAN",{"url":82,"sources":83,"tags":84},"https://access.redhat.com/errata/RHSA-2017:2060",[70,64],[79,85],"X Refsource REDHAT",{"url":87,"sources":88,"tags":89},"http://www.openwall.com/lists/oss-security/2017/02/02/9",[70,64],[90,91,74],"Mailing List","X Refsource MLIST",{"url":93,"sources":94,"tags":95},"https://bugzilla.gnome.org/show_bug.cgi?id=777265",[70,64],[96,97],"X Refsource CONFIRM","Issue Tracking",{"url":99,"sources":100,"tags":101},"https://gstreamer.freedesktop.org/releases/1.10/#1.10.3",[70,64],[96,102,79],"Release Notes",{"url":104,"sources":105,"tags":106},"https://security.gentoo.org/glsa/201705-10",[70,64],[79,107],"X Refsource GENTOO",{"url":109,"sources":110,"tags":111},"http://www.openwall.com/lists/oss-security/2017/02/01/7",[70,64],[90,91,74],[],{"date":114,"score":60,"percentile":115},"2026-06-05",0.89111,[117,121,124,127,130,133,136,139,142,145,148,151,154,157,160,164,167,169,171,174,177,180,182,185,188,191,194,196,199,202,205,208,211,213,216,219,222,225,228,231,233,236,238,241,244,248,251,254,256,259,262,264,267,270,273,276,279,282,285,288,291,294,297,299,301,304,307,309,312,315,317,320,323,325,328,331,334,337,340,343,346,349,352,354,357,360,362,365,368,371],{"date":118,"score":119,"percentile":120},"2025-11-04",0.02419,0.84572,{"date":122,"score":119,"percentile":123},"2025-11-05",0.84575,{"date":125,"score":119,"percentile":126},"2025-11-06",0.84578,{"date":128,"score":119,"percentile":129},"2025-11-07",0.84584,{"date":131,"score":119,"percentile":132},"2025-11-08",0.84589,{"date":134,"score":119,"percentile":135},"2025-11-09",0.84582,{"date":137,"score":119,"percentile":138},"2025-11-10",0.8458,{"date":140,"score":119,"percentile":141},"2025-11-11",0.84585,{"date":143,"score":119,"percentile":144},"2025-11-12",0.84595,{"date":146,"score":119,"percentile":147},"2025-11-13",0.84602,{"date":149,"score":119,"percentile":150},"2025-11-14",0.84603,{"date":152,"score":119,"percentile":153},"2025-11-15",0.84597,{"date":155,"score":119,"percentile":156},"2025-11-16",0.84598,{"date":158,"score":119,"percentile":159},"2025-11-17",0.84588,{"date":161,"score":162,"percentile":163},"2025-11-18",0.03551,0.8651,{"date":165,"score":162,"percentile":166},"2025-11-19",0.86511,{"date":168,"score":162,"percentile":166},"2025-11-20",{"date":170,"score":119,"percentile":150},"2025-11-21",{"date":172,"score":119,"percentile":173},"2025-11-22",0.846,{"date":175,"score":119,"percentile":176},"2025-11-23",0.84592,{"date":178,"score":119,"percentile":179},"2025-11-24",0.8459,{"date":181,"score":119,"percentile":176},"2025-11-25",{"date":183,"score":119,"percentile":184},"2025-11-26",0.84593,{"date":186,"score":119,"percentile":187},"2025-11-27",0.84594,{"date":189,"score":119,"percentile":190},"2025-11-28",0.84576,{"date":192,"score":119,"percentile":193},"2025-11-29",0.84612,{"date":195,"score":119,"percentile":193},"2025-11-30",{"date":197,"score":119,"percentile":198},"2025-12-01",0.8468,{"date":200,"score":119,"percentile":201},"2025-12-02",0.84682,{"date":203,"score":119,"percentile":204},"2025-12-03",0.84683,{"date":206,"score":119,"percentile":207},"2025-12-04",0.84613,{"date":209,"score":119,"percentile":210},"2025-12-05",0.84616,{"date":212,"score":119,"percentile":210},"2025-12-06",{"date":214,"score":119,"percentile":215},"2025-12-07",0.84608,{"date":217,"score":119,"percentile":218},"2025-12-08",0.8461,{"date":220,"score":119,"percentile":221},"2025-12-09",0.84622,{"date":223,"score":119,"percentile":224},"2025-12-10",0.84644,{"date":226,"score":119,"percentile":227},"2025-12-11",0.84649,{"date":229,"score":119,"percentile":230},"2025-12-12",0.84654,{"date":232,"score":119,"percentile":227},"2025-12-13",{"date":234,"score":119,"percentile":235},"2025-12-14",0.8465,{"date":237,"score":119,"percentile":227},"2025-12-15",{"date":239,"score":119,"percentile":240},"2025-12-16",0.84657,{"date":242,"score":119,"percentile":243},"2025-12-17",0.84661,{"date":245,"score":246,"percentile":247},"2025-12-18",0.03053,0.86263,{"date":249,"score":246,"percentile":250},"2025-12-19",0.86264,{"date":252,"score":246,"percentile":253},"2025-12-20",0.86262,{"date":255,"score":246,"percentile":250},"2025-12-21",{"date":257,"score":246,"percentile":258},"2025-12-22",0.86255,{"date":260,"score":246,"percentile":261},"2025-12-23",0.86259,{"date":263,"score":246,"percentile":250},"2025-12-24",{"date":265,"score":246,"percentile":266},"2025-12-25",0.86275,{"date":268,"score":246,"percentile":269},"2025-12-26",0.8628,{"date":271,"score":246,"percentile":272},"2025-12-27",0.86322,{"date":274,"score":246,"percentile":275},"2025-12-28",0.86271,{"date":277,"score":246,"percentile":278},"2025-12-29",0.86265,{"date":280,"score":246,"percentile":281},"2025-12-30",0.86273,{"date":283,"score":246,"percentile":284},"2025-12-31",0.86282,{"date":286,"score":246,"percentile":287},"2026-01-01",0.86341,{"date":289,"score":246,"percentile":290},"2026-01-02",0.86343,{"date":292,"score":246,"percentile":293},"2026-01-03",0.86344,{"date":295,"score":246,"percentile":296},"2026-01-04",0.86284,{"date":298,"score":246,"percentile":269},"2026-01-05",{"date":300,"score":246,"percentile":284},"2026-01-06",{"date":302,"score":246,"percentile":303},"2026-01-07",0.86283,{"date":305,"score":246,"percentile":306},"2026-01-08",0.86293,{"date":308,"score":246,"percentile":306},"2026-01-09",{"date":310,"score":246,"percentile":311},"2026-01-10",0.86291,{"date":313,"score":246,"percentile":314},"2026-01-11",0.86285,{"date":316,"score":246,"percentile":284},"2026-01-12",{"date":318,"score":246,"percentile":319},"2026-01-13",0.86278,{"date":321,"score":246,"percentile":322},"2026-01-14",0.86292,{"date":324,"score":246,"percentile":322},"2026-01-15",{"date":326,"score":246,"percentile":327},"2026-01-16",0.86297,{"date":329,"score":246,"percentile":330},"2026-01-17",0.863,{"date":332,"score":246,"percentile":333},"2026-01-18",0.86301,{"date":335,"score":246,"percentile":336},"2026-01-19",0.86295,{"date":338,"score":246,"percentile":339},"2026-01-20",0.8629,{"date":341,"score":246,"percentile":342},"2026-01-21",0.86296,{"date":344,"score":246,"percentile":345},"2026-01-22",0.86302,{"date":347,"score":246,"percentile":348},"2026-01-23",0.86318,{"date":350,"score":246,"percentile":351},"2026-01-24",0.86326,{"date":353,"score":246,"percentile":272},"2026-01-25",{"date":355,"score":246,"percentile":356},"2026-01-26",0.8632,{"date":358,"score":246,"percentile":359},"2026-01-27",0.86324,{"date":361,"score":246,"percentile":351},"2026-01-28",{"date":363,"score":246,"percentile":364},"2026-01-29",0.86329,{"date":366,"score":246,"percentile":367},"2026-01-30",0.86333,{"date":369,"score":246,"percentile":370},"2026-01-31",0.86334,{"date":372,"score":246,"percentile":373},"2026-02-01",0.86399,[375],{"source":64,"cvss_v2_0":376,"cvss_v3_0":381,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":377,"baseSeverity":9,"vectorString":378,"impactScore":379,"exploitabilityScore":380},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,10,{"baseScore":62,"baseSeverity":382,"vectorString":65,"impactScore":383,"exploitabilityScore":380},"HIGH",6,[385,396],{"ecosystem":9,"name":386,"vendor":387,"product":386,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":389},"gstreamer","gstreamer_project","a",[390],{"version":391,"is_range":392,"range_type":393,"version_start":9,"version_start_type":9,"version_end":394,"version_end_type":395,"fixed_in":9},"lte1.10.2",true,"cpe","1.10.2","including",{"ecosystem":9,"name":386,"vendor":386,"product":386,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":397},[398],{"version":391,"is_range":392,"range_type":393,"version_start":9,"version_start_type":9,"version_end":394,"version_end_type":395,"fixed_in":9}]