The GStreamer project reports:
Multiple security issues were identified and fixed in the GStreamer framework.
- GStreamer-SA-2026-0030: Missing bounds checks in RTCP SDES packet parsing
- GStreamer-SA-2026-0031: Integer overflow and truncation in MXF demuxer
- GStreamer-SA-2026-0032: Out-of-bounds read and write in XMP tag parser
- GStreamer-SA-2026-0033: Out-of-bounds read and modification of const data in ID3v2 parser
- GStreamer-SA-2026-0034: Division by zero in mDVDsub subtitle parser
- GStreamer-SA-2026-0035: Integer overflow in WavPack decoder
- GStreamer-SA-2026-0036: Out-of-bounds read in SBC audio parser header parsing
- GStreamer-SA-2026-0037: Heap corruption in gst-libav AV protocol pipe
- GStreamer-SA-2026-0038: Memory leak and NULL pointer dereference in gst-libav demuxer
- GStreamer-SA-2026-0039: Assertion in AV1 parser tile data parsing
- GStreamer-SA-2026-0040: Out-of-bounds read in VA JPEG decoder segment parsing
- GStreamer-SA-2026-0042: Out-of-bounds reads and integer overflows in RealMedia demuxer
- GStreamer-SA-2026-0043: Out-of-bounds read and write in RFB source
- GStreamer-SA-2026-0045: Out-of-bounds reads in PCAP parser due to missing bounds checks
- GStreamer-SA-2026-0046: Integer overflow in VMNC decoder cursor payload size calculation
- GStreamer-SA-2026-0047: One-byte out-of-bounds read in H.264 NAL unit parser
- GStreamer-SA-2026-0048: Out-of-bounds read in H.266 parser VUI aspect ratio parsing