Skip to content

CVE-2025-47183 on CTRL-OS 24.05

Packages: gst_all_1.gst-plugins-good

Status: Plausible

CVE Information

In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.

Updates

2026-04-07 19:25 CEST

Metadata changes:

  • Status for package gst_all_1.gst-plugins-good: “Plausible