Gst-plugins-good
This hub aggregates every CVE we track for Gst-plugins-good, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
OSS Librarieson-prem
5
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM4HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
2
0
0
0
0
0
0
1
0
2
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Gst-plugins-good.
- CVE-2026-46470An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_audio_caps function does not sufficiently validate atom data before p...4.0
- CVE-2026-46469An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function does not sufficiently validate atom data before p...4.0
- CVE-2026-1940Gstreamer: incomplete fix of cve-2026-19405.1
- CVE-2025-47219In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.8.1
- CVE-2025-47183In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.6.6
Product normalization is registry-driven with AI assist and human review. How it works