CVE-2015-0797 (debian_linux, enterprise_linux_desktop, enterprise_linux_eus, enterprise_linux_server, enterprise_linux_server_aus, enterprise_linux_server_tus, enterprise_linux_workstation, firefox, firefox_esr, gstreamer, linux_enterprise_desktop, linux_enterprise_server, linux_enterprise_software_development_kit, seamonkey, thunderbird)

GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264 video data in an m4v file.

View Full Alert

Leave a Reply