CVE-2016-9446

Published: Jan 23, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas.

Affected (14)

Products: Gstreamer: Gstreamer · Redhat: Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Tus, Enterprise Linux Workstation · Fedoraproject: Fedora

1 product

6 products

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Tus

Enterprise Linux Workstation

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gstreamer Gstreamer	Before 1.11.1

Configuration B

12 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Eus	Version 7.4
Redhat Enterprise Linux Eus	Version 7.5
Redhat Enterprise Linux Eus	Version 7.6
Redhat Enterprise Linux Eus	Version 7.7
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.4
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Aus	Version 7.7
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.7
Redhat Enterprise Linux Workstation	Version 7.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 35

Related CWEs

Improper Initialization

The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.

References (18)

http://www.openwall.com/lists/oss-security/2016/11/18/12

Source: security@opentext.com

http://www.openwall.com/lists/oss-security/2016/11/18/13

Source: security@opentext.com

http://www.securityfocus.com/bid/94423

Source: security@opentext.com

https://access.redhat.com/errata/RHSA-2017:2060

Source: security@opentext.com

https://bugzilla.gnome.org/show_bug.cgi?id=774533

Source: security@opentext.com

https://cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/gst/vmnc/vmncdec.c?id=4cb1bcf1422bbcd79c0f683edb7ee85e3f7a31fe

Source: security@opentext.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UM7IXFGHV66KNWGWG6ZBDNKXD2UJL2VQ/

Source: security@opentext.com

https://scarybeastsecurity.blogspot.de/2016/11/0day-poc-risky-design-decisions-in.html

Source: security@opentext.com

https://security.gentoo.org/glsa/201705-10

Source: security@opentext.com

http://www.openwall.com/lists/oss-security/2016/11/18/12

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2016/11/18/13

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/94423

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2017:2060

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.gnome.org/show_bug.cgi?id=774533

Source: af854a3a-2127-422b-91ae-364da2661108

https://cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/gst/vmnc/vmncdec.c?id=4cb1bcf1422bbcd79c0f683edb7ee85e3f7a31fe

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UM7IXFGHV66KNWGWG6ZBDNKXD2UJL2VQ/

Source: af854a3a-2127-422b-91ae-364da2661108

https://scarybeastsecurity.blogspot.de/2016/11/0day-poc-risky-design-decisions-in.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201705-10

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.