Impact
An out‑of‑bounds read occurs in the GStreamer RealMedia demuxer when parsing MDPR chunks for audio stream headers with versions 4 and 5. The parser reads fields from fixed offsets without verifying that the chunk contains sufficient data, allowing a malicious .rm file to cause the application to crash. In some cases, bytes read beyond the buffer can be incorporated into stream metadata, potentially exposing limited information. This flaw is identified as CWE‑125 and results in a high‑severity denial of service.
Affected Systems
The vulnerability affects Red Hat Enterprise Linux 7 through 10 where the gstreamer1-plugins-ugly-free (gst‑plugins‑ugly) package is installed. Exact package or kernel versions are not specified in the data, so any impacted RHEL release that includes this plugin set is at risk.
Risk and Exploitability
The CVSS score of 7.1 indicates a high impact, while the EPSS score of less than 1 % suggests that exploitation is currently unlikely. The vulnerability is not listed in the CISA KEV catalog. Inference indicates that an attacker would need to supply a specially crafted .rm file to a GStreamer‑powered application, which could be local or, in some deployment scenarios, remote if the application retrieves media from untrusted sources. The failure to read input securely can lead to application termination and, potentially, the disclosure of restricted data.
OpenCVE Enrichment