news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.6	CVE-2026-53705	Gstreamer1-plugins-good: gstreamer: heap buffer overflow in wavpack decoder via integer overflow_CVE-2026-53705 A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. When processing a specially crafted WavPack file, an integer overflow in...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-53704	Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer fileinfo metadata parser_CVE-2026-53704 A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted ...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-53703	Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer audio stream header parser_CVE-2026-53703 A vulnerability was found in the GStreamer RealMedia demuxer (gst-plugins-ugly). When processing a RealMedia (.rm) file, the demuxer parses MDPR (m...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-52722	Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling_CVE-2026-52722 A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow sign...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
MEDIUM 5.3	CVE-2026-52721	Gstreamer1-plugins-bad-free: gstreamer: multiple out-of-bounds reads in pcapparse ipv4/tcp header parsing_CVE-2026-52721 Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer bou...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 8.8	CVE-2026-52720	Gstreamer1-plugins-bad-free: gstreamer: heap buffer overflow via crafted vnc server rectangle in librfb_CVE-2026-52720 A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client). The rectangle bounds check incorrectly validates area rather...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-52719	Gstreamer1-plugins-bad-free: gstreamer: out-of-bounds read via jpeg segment length validation in va decoder_CVE-2026-52719 An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value f...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-52718	Gstreamer1-plugins-bad-free: gstreamer: denial of service via av1 tile_list_obu parser byte/bit confusion_CVE-2026-52718 A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gst_av1_parser_parse_tile_list_obu() function p...	Red Hat	Red Hat Enterprise Linux 10	Jun 15, 2026	CVE
HIGH 8.6	CVE-2026-49954	Discuz! X5.0 Local File Inclusion via enable_disable.php Plugin Directory_CVE-2026-49954 Discuz! X5.0 releases 20260320 through 20260501 contain a local file inclusion vulnerability that allows authenticated administrators to execute ar...	Discuz!	Discuz! X5.0 20260320	Jun 15, 2026	CVE
MEDIUM 6.9	CVE-2026-49953	Discuz! X5.0 CAPTCHA Bypass via Predictable Character Set_CVE-2026-49953 Discuz! X5.0 releases 20260320 through 20260501 contains a CAPTCHA bypass vulnerability that allows unauthenticated remote attackers to defeat chal...	Discuz!	Discuz! X5.0 20260320	Jun 15, 2026	CVE