Skip to main content

GStreamer gst-plugins-good CVE-2026-46469

| EUVDEUVD-2026-30347 MEDIUM
Divide By Zero (CWE-369)
2026-05-14 cve@mitre.org GHSA-f2c5-5798-qfvg
4.0
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.0 MEDIUM
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
SUSE
5.5 MEDIUM
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low

Lifecycle Timeline

3
Patch available
May 14, 2026 - 19:02 EUVD
Analysis Generated
May 14, 2026 - 18:30 vuln.today
CVE Published
May 14, 2026 - 18:16 nvd
MEDIUM 4.0

DescriptionCVE.org

An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function does not sufficiently validate atom data before performing division operations, leading to denial of service due to integer division by zero.

AnalysisAI

Integer division by zero in GStreamer gst-plugins-good before version 1.28.2 allows local attackers to cause denial of service by crafting malicious MP4 audio files. The isomp4 plugin's qtdemux_parse_trak function fails to validate atom data before performing division operations, causing application crash when parsing specially crafted audio tracks. No authentication required; exploitation requires only local file access and media playback.

Technical ContextAI

GStreamer is a multimedia framework that handles audio and video decoding. The isomp4 (ISO Media) plugin parses MP4 container files, which use a hierarchical atom structure to store metadata and media data. The qtdemux_parse_trak function specifically processes track atoms (trak) within MP4 files, extracting audio/video stream information. CWE-369 (Divide By Zero) indicates the vulnerability stems from missing input validation: the function performs arithmetic division using values extracted from untrusted atom data without confirming non-zero divisors. This is a common issue in multimedia parsers where atom fields (sample rates, counts, timing values) are used in calculations without bounds checking.

RemediationAI

Upgrade GStreamer gst-plugins-good to version 1.28.2 or later immediately. This is the vendor-released patch addressing the division-by-zero vulnerability in the qtdemux_parse_trak function. For distributions not yet providing updated packages, apply the upstream patch from https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11243.patch directly to the source tree and rebuild. As a temporary compensating control, restrict processing of MP4 audio files to trusted sources only and disable automatic media file opening in applications handling untrusted input (e.g., email attachments, web-downloaded media). However, this workaround degrades functionality and should not replace patching. Organizations using GStreamer in server-side transcoding pipelines should implement resource isolation (containerization, process sandboxing) to limit the impact of crashes, though this does not prevent the denial-of-service condition itself.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Basesystem 15 SP7 Fixed
SUSE Linux Enterprise Server 15 SP7 Fixed
SUSE Linux Enterprise Server 16.0 Fixed

Share

CVE-2026-46469 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy