GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

GStreamer contains a remote code execution vulnerability (CVE-2026-3084) rated HIGH with a CVSS score of 7.8 that allows attackers to execute arbitrary code on affected systems through interaction with the library. An attacker can leverage this flaw to gain full control over vulnerable installations, though exploitation requires the victim to interact with GStreamer in some way depending on how the application implements it. Security teams should prioritize patching GStreamer across their infrastructure, identify all applications and systems that use this library, and apply vendor updates as soon as they become available.