What the vulnerability does

01Description

A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.

Key dates

02Disclosure timeline

January 25, 2021 CVE published
August 3, 2024 Record updated