CVE-2026-2923
- Source
- https://cve.org/CVERecord?id=CVE-2026-2923
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-2923.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-2923
- Downstream
- Published
- 2026-03-16T14:19:33.013Z
- Modified
- 2026-03-19T12:52:51.838508Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation.
The specific flaw exists within the handling of coordinates. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28838.
- References
Affected packages
Git / github.com/gstreamer/gstreamer
Affected ranges
- Type
- GIT
- Repo
- https://github.com/gstreamer/gstreamer
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "1.28.1" } ] }
- Type
- GIT
- Repo
- https://gitlab.freedesktop.org/gstreamer/gstreamer
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
1.*
1.0.0
1.0.1
1.0.2
1.1.1
1.1.2
1.1.3
1.1.4
1.1.90
1.10.0
1.11.0
1.11.1
1.11.2
1.11.90
1.11.91
1.12.0
1.13.1
1.13.90
1.13.91
1.14.0
1.15.1
1.15.2
1.15.90
1.16.0
1.17.1
1.17.2
1.17.90
1.18.0
1.19.1
1.19.2
1.19.3
1.19.90
1.2.0
1.20.0
1.21.1
1.21.2
1.21.3
1.21.90
1.22.0
1.23.1
1.23.2
1.23.90
1.24.0
1.25.1
1.25.50
1.25.90
1.26.0
1.27.1
1.27.2
1.27.50
1.27.90
1.28.0
1.3.1
1.3.2
1.3.3
1.3.90
1.3.91
1.4.0
1.5.1
1.5.2
1.5.90
1.5.91
1.6.0
1.7.1
1.7.2
1.7.90
1.7.91
1.8.0
1.9.1
1.9.2
1.9.90
Other
BEFORE_INDENT
BRANCH-AUTOPLUG2-ROOT
BRANCH-BUILD1-200112061-ROOT
BRANCH-BUILD1-200112101-ROOT
BRANCH-BUILD1-20011216-FREEZE
BRANCH-BUILD1-ROOT
BRANCH-CAPSNEGO1-ROOT
BRANCH-ERROR-ROOT
BRANCH-EVENTS1-200110161-ROOT
BRANCH-EVENTS1-ROOT
BRANCH-EVENTS2-ROOT
BRANCH-GOBJECT1-200106241-ROOT
BRANCH-GOBJECT1-ROOT
BRANCH-GSTREAMER-0_6-ROOT
BRANCH-GSTREAMER-0_8-ROOT
BRANCH-INCSCHED1-200104161-ROOT
BRANCH-INCSCHED1-200104251-ROOT
BRANCH-INCSCHED1-200105231-ROOT
BRANCH-INCSCHED1-200105251-ROOT
BRANCH-INCSCHED1-ROOT
BRANCH-PLUGINVER1-20010422-ROOT
BRANCH-PLUGINVER1-ROOT
BRANCH-RELEASE-0_3_3-ROOT
BRANCH-RELEASE-0_3_4-ROOT
BRANCH-RELEASE-0_4_0-ROOT
BRANCH-RELEASE-0_4_1-ROOT
BRANCH-RELEASE-0_4_2-ROOT
BRANCH-RELEASE-0_5_0-ROOT
BRANCH-RELEASE-0_5_1-ROOT
BRANCH-RELEASE-0_5_2-ROOT
BRANCH-RELEASE-0_7_2-ROOT
BRANCH-RELEASE-0_7_4-ROOT
BRANCH-RELEASE-0_7_5-ROOT
CAPS-MERGE-1
CAPS-MERGE-2
CAPS-MERGE-3
CAPS-ROOT
CHANGELOG_START
DEBIAN-0_3_1-1
EVENTS1-200110161-FREEZE
GIT_CONVERSION
GOBJECT1-200106241
GOBJECT1-200106241-FREEZE
HEAD-20010306-PRE_AUTOPLUG2
HEAD-20010312-PRE_CAPSNEGO1
INCSCHED1-200105251
INCSCHED1-200105251-FREEZE
MOVE-TO-FDO
OSLOSUMMIT1-200303051
PLUGINVER1-20010422
PLUGINVER1-20010422-FREEZE
RELEASE-0_10_0
RELEASE-0_10_1
RELEASE-0_10_10
RELEASE-0_10_11
RELEASE-0_10_12
RELEASE-0_10_13
RELEASE-0_10_14
RELEASE-0_10_15
RELEASE-0_10_16
RELEASE-0_10_17
RELEASE-0_10_18
RELEASE-0_10_2
RELEASE-0_10_20
RELEASE-0_10_21
RELEASE-0_10_22
RELEASE-0_10_3
RELEASE-0_10_4
RELEASE-0_10_5
RELEASE-0_10_6
RELEASE-0_10_7
RELEASE-0_10_8
RELEASE-0_10_9
RELEASE-0_1_0-SLIPSTREAM
RELEASE-0_1_1-DUCTTAPE
RELEASE-0_2_0-CRITICALMASS
RELEASE-0_2_1-SEDIMASTER
RELEASE-0_2_1-UNKN
RELEASE-0_3_0-EVENTFUL
RELEASE-0_3_1-BELGIANBEER
RELEASE-0_3_2-DOBDAY
RELEASE-0_7_1
RELEASE-0_7_2
RELEASE-0_7_3
RELEASE-0_7_6
RELEASE-0_8_0
RELEASE-0_8_1
RELEASE-0_8_2
RELEASE-0_8_3
RELEASE-0_8_4
RELEASE-0_8_6
RELEASE-0_8_7
RELEASE-0_8_8
RELEASE-0_8_9
RELEASE-0_9_2
RELEASE-0_9_3
RELEASE-0_9_4
RELEASE-0_9_5
RELEASE-0_9_6
RELEASE-0_9_7
TYPEFIND-ROOT
monorepo-start
start
RELEASE-0.*
RELEASE-0.10.23
RELEASE-0.10.24
RELEASE-0.10.25
RELEASE-0.10.26
RELEASE-0.10.27
RELEASE-0.10.28
RELEASE-0.10.29
RELEASE-0.10.30
RELEASE-0.10.31
RELEASE-0.10.32
RELEASE-0.10.33
RELEASE-0.10.34
RELEASE-0.10.35
RELEASE-0.11.0
RELEASE-0.11.1
RELEASE-0.11.2
RELEASE-0.11.90
RELEASE-0.11.91
RELEASE-0.11.92
RELEASE-0.11.93
RELEASE-0.11.94
RELEASE-0.11.99
gst-build-1.*
gst-build-1.12.0
gst-build-1.14.0
gst-build-1.15.2
gst-build-1.15.90
gst-build-1.16.0
gst-build-1.17.1
gst-build-1.17.2
gst-build-1.17.90
gst-build-1.19.1
gst-devtools-1.*
gst-devtools-1.10.0
gst-devtools-1.11.0
gst-devtools-1.11.1
gst-devtools-1.11.2
gst-devtools-1.11.90
gst-devtools-1.11.91
gst-devtools-1.12.0
gst-devtools-1.13.1
gst-devtools-1.13.90
gst-devtools-1.13.91
gst-devtools-1.14.0
gst-devtools-1.15.1
gst-devtools-1.15.2
gst-devtools-1.15.90
gst-devtools-1.16.0
gst-devtools-1.17.1
gst-devtools-1.17.2
gst-devtools-1.17.90
gst-devtools-1.18.0
gst-devtools-1.19.1
gst-devtools-1.19.2
gst-devtools-1.5.2
gst-devtools-1.5.90
gst-devtools-1.6.0
gst-devtools-1.7.90
gst-devtools-1.7.91
gst-devtools-1.8.0
gst-devtools-1.9.1
gst-devtools-1.9.2
gst-devtools-1.9.90
gst-docs-1.*
gst-docs-1.16.0
gst-docs-1.17.1
gst-docs-1.17.2
gst-docs-1.17.90
gst-docs-1.18.0
gst-docs-1.19.1
gst-docs-1.19.2
gst-editing-services-0.*
gst-editing-services-0.10.1
gst-editing-services-1.*
gst-editing-services-1.1.90
gst-editing-services-1.10.0
gst-editing-services-1.11.0
gst-editing-services-1.11.1
gst-editing-services-1.11.2
gst-editing-services-1.11.90
gst-editing-services-1.11.91
gst-editing-services-1.12.0
gst-editing-services-1.13.1
gst-editing-services-1.13.90
gst-editing-services-1.13.91
gst-editing-services-1.14.0
gst-editing-services-1.15.1
gst-editing-services-1.15.2
gst-editing-services-1.15.90
gst-editing-services-1.16.0
gst-editing-services-1.17.1
gst-editing-services-1.17.2
gst-editing-services-1.17.90
gst-editing-services-1.18.0
gst-editing-services-1.19.1
gst-editing-services-1.19.2
gst-editing-services-1.2.0
gst-editing-services-1.3.90
gst-editing-services-1.4.0
gst-editing-services-1.5.2
gst-editing-services-1.5.90
gst-editing-services-1.5.91
gst-editing-services-1.6.0
gst-editing-services-1.7.1
gst-editing-services-1.7.2
gst-editing-services-1.7.90
gst-editing-services-1.7.91
gst-editing-services-1.8.0
gst-editing-services-1.9.1
gst-editing-services-1.9.2
gst-editing-services-1.9.90
gst-examples-1.*
gst-examples-1.16.0
gst-examples-1.17.1
gst-examples-1.17.2
gst-examples-1.17.90
gst-examples-1.18.0
gst-examples-1.19.1
gst-examples-1.19.2
gst-libav-0.*
gst-libav-0.10.0
gst-libav-0.10.1
gst-libav-0.10.10
gst-libav-0.10.11
gst-libav-0.10.12
gst-libav-0.10.13
gst-libav-0.10.2
gst-libav-0.10.3
gst-libav-0.10.4
gst-libav-0.10.5
gst-libav-0.10.6
gst-libav-0.10.7
gst-libav-0.10.8
gst-libav-0.10.9
gst-libav-0.11.1
gst-libav-0.11.2
gst-libav-0.11.90
gst-libav-0.11.91
gst-libav-0.11.92
gst-libav-0.11.93
gst-libav-0.11.94
gst-libav-0.11.99
gst-libav-0.3.1
gst-libav-0.3.2
gst-libav-0.3.3
gst-libav-0.3.4
gst-libav-0.4.0
gst-libav-0.4.1
gst-libav-0.4.2
gst-libav-0.5.0
gst-libav-0.5.1
gst-libav-0.5.2
gst-libav-0.7.1
gst-libav-0.7.2
gst-libav-0.7.3
gst-libav-0.7.4
gst-libav-0.8.0
gst-libav-0.8.1
gst-libav-0.8.2
gst-libav-0.8.3
gst-libav-0.8.4
gst-libav-0.8.5
gst-libav-0.8.6
gst-libav-0.9.3
gst-libav-0.9.4
gst-libav-0.9.5
gst-libav-0.9.6
gst-libav-0.9.7
gst-libav-1.*
gst-libav-1.0.0
gst-libav-1.0.1
gst-libav-1.0.2
gst-libav-1.1.1
gst-libav-1.1.2
gst-libav-1.1.3
gst-libav-1.1.4
gst-libav-1.1.90
gst-libav-1.10.0
gst-libav-1.11.0
gst-libav-1.11.1
gst-libav-1.11.2
gst-libav-1.11.90
gst-libav-1.11.91
gst-libav-1.12.0
gst-libav-1.13.1
gst-libav-1.13.90
gst-libav-1.13.91
gst-libav-1.14.0
gst-libav-1.15.1
gst-libav-1.15.2
gst-libav-1.15.90
gst-libav-1.16.0
gst-libav-1.17.1
gst-libav-1.17.2
gst-libav-1.17.90
gst-libav-1.18.0
gst-libav-1.19.1
gst-libav-1.19.2
gst-libav-1.2.0
gst-libav-1.3.1
gst-libav-1.3.2
gst-libav-1.3.3
gst-libav-1.3.90
gst-libav-1.3.91
gst-libav-1.4.0
gst-libav-1.5.1
gst-libav-1.5.2
gst-libav-1.5.90
gst-libav-1.5.91
gst-libav-1.6.0
gst-libav-1.7.1
gst-libav-1.7.2
gst-libav-1.7.90
gst-libav-1.7.91
gst-libav-1.8.0
gst-libav-1.9.1
gst-libav-1.9.2
gst-libav-1.9.90
gst-omx-1.*
gst-omx-1.0.0
gst-omx-1.10.0
gst-omx-1.11.0
gst-omx-1.11.1
gst-omx-1.11.2
gst-omx-1.11.90
gst-omx-1.11.91
gst-omx-1.12.0
gst-omx-1.13.1
gst-omx-1.13.90
gst-omx-1.13.91
gst-omx-1.14.0
gst-omx-1.15.1
gst-omx-1.15.2
gst-omx-1.15.90
gst-omx-1.16.0
gst-omx-1.17.1
gst-omx-1.17.2
gst-omx-1.17.90
gst-omx-1.18.0
gst-omx-1.19.1
gst-omx-1.19.2
gst-omx-1.2.0
gst-omx-1.9.1
gst-omx-1.9.2
gst-omx-1.9.90
gst-plugins-bad-0.*
gst-plugins-bad-0.10.0
gst-plugins-bad-0.10.1
gst-plugins-bad-0.10.10
gst-plugins-bad-0.10.11
gst-plugins-bad-0.10.12
gst-plugins-bad-0.10.13
gst-plugins-bad-0.10.14
gst-plugins-bad-0.10.15
gst-plugins-bad-0.10.16
gst-plugins-bad-0.10.17
gst-plugins-bad-0.10.18
gst-plugins-bad-0.10.19
gst-plugins-bad-0.10.2
gst-plugins-bad-0.10.20
gst-plugins-bad-0.10.21
gst-plugins-bad-0.10.22
gst-plugins-bad-0.10.3
gst-plugins-bad-0.10.4
gst-plugins-bad-0.10.5
gst-plugins-bad-0.10.6
gst-plugins-bad-0.10.7
gst-plugins-bad-0.10.8
gst-plugins-bad-0.10.9
gst-plugins-bad-0.11.1
gst-plugins-bad-0.11.2
gst-plugins-bad-0.11.90
gst-plugins-bad-0.11.91
gst-plugins-bad-0.11.92
gst-plugins-bad-0.11.93
gst-plugins-bad-0.11.94
gst-plugins-bad-0.11.99
gst-plugins-bad-0.9.1
gst-plugins-bad-0.9.2
gst-plugins-bad-0.9.3
gst-plugins-bad-0.9.4
gst-plugins-bad-0.9.5
gst-plugins-bad-0.9.6
gst-plugins-bad-0.9.7
gst-plugins-bad-1.*
gst-plugins-bad-1.0.0
gst-plugins-bad-1.0.1
gst-plugins-bad-1.0.2
gst-plugins-bad-1.1.1
gst-plugins-bad-1.1.2
gst-plugins-bad-1.1.3
gst-plugins-bad-1.1.4
gst-plugins-bad-1.1.90
gst-plugins-bad-1.10.0
gst-plugins-bad-1.11.0
gst-plugins-bad-1.11.1
gst-plugins-bad-1.11.2
gst-plugins-bad-1.11.90
gst-plugins-bad-1.11.91
gst-plugins-bad-1.12.0
gst-plugins-bad-1.13.1
gst-plugins-bad-1.13.90
gst-plugins-bad-1.13.91
gst-plugins-bad-1.14.0
gst-plugins-bad-1.15.1
gst-plugins-bad-1.15.2
gst-plugins-bad-1.15.90
gst-plugins-bad-1.16.0
gst-plugins-bad-1.17.1
gst-plugins-bad-1.17.2
gst-plugins-bad-1.17.90
gst-plugins-bad-1.18.0
gst-plugins-bad-1.19.1
gst-plugins-bad-1.19.2
gst-plugins-bad-1.2.0
gst-plugins-bad-1.3.1
gst-plugins-bad-1.3.2
gst-plugins-bad-1.3.3
gst-plugins-bad-1.3.90
gst-plugins-bad-1.4.0
gst-plugins-bad-1.5.1
gst-plugins-bad-1.5.2
gst-plugins-bad-1.5.90
gst-plugins-bad-1.5.91
gst-plugins-bad-1.6.0
gst-plugins-bad-1.7.1
gst-plugins-bad-1.7.2
gst-plugins-bad-1.7.90
gst-plugins-bad-1.7.91
gst-plugins-bad-1.8.0
gst-plugins-bad-1.9.1
gst-plugins-bad-1.9.2
gst-plugins-bad-1.9.90
gst-plugins-base-0.*
gst-plugins-base-0.10.0
gst-plugins-base-0.10.1
gst-plugins-base-0.10.10
gst-plugins-base-0.10.11
gst-plugins-base-0.10.12
gst-plugins-base-0.10.13
gst-plugins-base-0.10.14
gst-plugins-base-0.10.15
gst-plugins-base-0.10.16
gst-plugins-base-0.10.17
gst-plugins-base-0.10.18
gst-plugins-base-0.10.2
gst-plugins-base-0.10.20
gst-plugins-base-0.10.21
gst-plugins-base-0.10.22
gst-plugins-base-0.10.23
gst-plugins-base-0.10.24
gst-plugins-base-0.10.25
gst-plugins-base-0.10.26
gst-plugins-base-0.10.27
gst-plugins-base-0.10.28
gst-plugins-base-0.10.29
gst-plugins-base-0.10.3
gst-plugins-base-0.10.30
gst-plugins-base-0.10.31
gst-plugins-base-0.10.32
gst-plugins-base-0.10.33
gst-plugins-base-0.10.34
gst-plugins-base-0.10.35
gst-plugins-base-0.10.4
gst-plugins-base-0.10.5
gst-plugins-base-0.10.6
gst-plugins-base-0.10.7
gst-plugins-base-0.10.8
gst-plugins-base-0.10.9
gst-plugins-base-0.11.0
gst-plugins-base-0.11.1
gst-plugins-base-0.11.2
gst-plugins-base-0.11.3
gst-plugins-base-0.11.90
gst-plugins-base-0.11.91
gst-plugins-base-0.11.92
gst-plugins-base-0.11.93
gst-plugins-base-0.11.94
gst-plugins-base-0.11.99
gst-plugins-base-0.9.1
gst-plugins-base-0.9.2
gst-plugins-base-0.9.3
gst-plugins-base-0.9.4
gst-plugins-base-0.9.5
gst-plugins-base-0.9.6
gst-plugins-base-0.9.7
gst-plugins-base-1.*
gst-plugins-base-1.0.0
gst-plugins-base-1.0.1
gst-plugins-base-1.0.2
gst-plugins-base-1.1.1
gst-plugins-base-1.1.2
gst-plugins-base-1.1.3
gst-plugins-base-1.1.4
gst-plugins-base-1.1.90
gst-plugins-base-1.10.0
gst-plugins-base-1.11.0
gst-plugins-base-1.11.1
gst-plugins-base-1.11.2
gst-plugins-base-1.11.90
gst-plugins-base-1.11.91
gst-plugins-base-1.12.0
gst-plugins-base-1.13.1
gst-plugins-base-1.13.90
gst-plugins-base-1.13.91
gst-plugins-base-1.14.0
gst-plugins-base-1.15.1
gst-plugins-base-1.15.2
gst-plugins-base-1.15.90
gst-plugins-base-1.16.0
gst-plugins-base-1.17.1
gst-plugins-base-1.17.2
gst-plugins-base-1.17.90
gst-plugins-base-1.18.0
gst-plugins-base-1.19.1
gst-plugins-base-1.19.2
gst-plugins-base-1.2.0
gst-plugins-base-1.3.1
gst-plugins-base-1.3.2
gst-plugins-base-1.3.3
gst-plugins-base-1.3.90
gst-plugins-base-1.3.91
gst-plugins-base-1.4.0
gst-plugins-base-1.5.1
gst-plugins-base-1.5.2
gst-plugins-base-1.5.90
gst-plugins-base-1.5.91
gst-plugins-base-1.6.0
gst-plugins-base-1.7.1
gst-plugins-base-1.7.2
gst-plugins-base-1.7.90
gst-plugins-base-1.7.91
gst-plugins-base-1.8.0
gst-plugins-base-1.9.1
gst-plugins-base-1.9.2
gst-plugins-base-1.9.90
gst-plugins-good-0.*
gst-plugins-good-0.10.0
gst-plugins-good-0.10.1
gst-plugins-good-0.10.11
gst-plugins-good-0.10.14
gst-plugins-good-0.10.15
gst-plugins-good-0.10.16
gst-plugins-good-0.10.17
gst-plugins-good-0.10.18
gst-plugins-good-0.10.19
gst-plugins-good-0.10.2
gst-plugins-good-0.10.20
gst-plugins-good-0.10.21
gst-plugins-good-0.10.22
gst-plugins-good-0.10.23
gst-plugins-good-0.10.24
gst-plugins-good-0.10.25
gst-plugins-good-0.10.26
gst-plugins-good-0.10.27
gst-plugins-good-0.10.28
gst-plugins-good-0.10.29
gst-plugins-good-0.10.3
gst-plugins-good-0.10.30
gst-plugins-good-0.10.4
gst-plugins-good-0.10.5
gst-plugins-good-0.10.6
gst-plugins-good-0.10.7
gst-plugins-good-0.10.8
gst-plugins-good-0.10.9
gst-plugins-good-0.11.1
gst-plugins-good-0.11.2
gst-plugins-good-0.11.90
gst-plugins-good-0.11.91
gst-plugins-good-0.11.92
gst-plugins-good-0.11.93
gst-plugins-good-0.11.94
gst-plugins-good-0.11.99
gst-plugins-good-0.9.1
gst-plugins-good-0.9.3
gst-plugins-good-0.9.4
gst-plugins-good-0.9.5
gst-plugins-good-0.9.6
gst-plugins-good-0.9.7
gst-plugins-good-1.*
gst-plugins-good-1.0.0
gst-plugins-good-1.0.1
gst-plugins-good-1.0.2
gst-plugins-good-1.1.1
gst-plugins-good-1.1.2
gst-plugins-good-1.1.3
gst-plugins-good-1.1.4
gst-plugins-good-1.1.90
gst-plugins-good-1.10.0
gst-plugins-good-1.11.0
gst-plugins-good-1.11.1
gst-plugins-good-1.11.2
gst-plugins-good-1.11.90
gst-plugins-good-1.11.91
gst-plugins-good-1.12.0
gst-plugins-good-1.13.1
gst-plugins-good-1.13.90
gst-plugins-good-1.13.91
gst-plugins-good-1.14.0
gst-plugins-good-1.15.1
gst-plugins-good-1.15.2
gst-plugins-good-1.15.90
gst-plugins-good-1.16.0
gst-plugins-good-1.17.1
gst-plugins-good-1.17.2
gst-plugins-good-1.17.90
gst-plugins-good-1.18.0
gst-plugins-good-1.19.1
gst-plugins-good-1.19.2
gst-plugins-good-1.2.0
gst-plugins-good-1.3.1
gst-plugins-good-1.3.2
gst-plugins-good-1.3.3
gst-plugins-good-1.3.90
gst-plugins-good-1.3.91
gst-plugins-good-1.4.0
gst-plugins-good-1.5.1
gst-plugins-good-1.5.2
gst-plugins-good-1.5.90
gst-plugins-good-1.5.91
gst-plugins-good-1.6.0
gst-plugins-good-1.7.1
gst-plugins-good-1.7.2
gst-plugins-good-1.7.90
gst-plugins-good-1.7.91
gst-plugins-good-1.8.0
gst-plugins-good-1.9.1
gst-plugins-good-1.9.2
gst-plugins-good-1.9.90
gst-plugins-ugly-0.*
gst-plugins-ugly-0.10.0
gst-plugins-ugly-0.10.1
gst-plugins-ugly-0.10.10
gst-plugins-ugly-0.10.11
gst-plugins-ugly-0.10.12
gst-plugins-ugly-0.10.13
gst-plugins-ugly-0.10.14
gst-plugins-ugly-0.10.15
gst-plugins-ugly-0.10.16
gst-plugins-ugly-0.10.17
gst-plugins-ugly-0.10.18
gst-plugins-ugly-0.10.2
gst-plugins-ugly-0.10.3
gst-plugins-ugly-0.10.4
gst-plugins-ugly-0.10.5
gst-plugins-ugly-0.10.6
gst-plugins-ugly-0.10.7
gst-plugins-ugly-0.10.8
gst-plugins-ugly-0.10.9
gst-plugins-ugly-0.11.1
gst-plugins-ugly-0.11.2
gst-plugins-ugly-0.11.90
gst-plugins-ugly-0.11.91
gst-plugins-ugly-0.11.92
gst-plugins-ugly-0.11.93
gst-plugins-ugly-0.11.94
gst-plugins-ugly-0.11.99
gst-plugins-ugly-0.9.1
gst-plugins-ugly-0.9.3
gst-plugins-ugly-0.9.4
gst-plugins-ugly-0.9.5
gst-plugins-ugly-0.9.6
gst-plugins-ugly-0.9.7
gst-plugins-ugly-1.*
gst-plugins-ugly-1.0.0
gst-plugins-ugly-1.0.1
gst-plugins-ugly-1.0.2
gst-plugins-ugly-1.1.1
gst-plugins-ugly-1.1.2
gst-plugins-ugly-1.1.3
gst-plugins-ugly-1.1.4
gst-plugins-ugly-1.1.90
gst-plugins-ugly-1.10.0
gst-plugins-ugly-1.11.0
gst-plugins-ugly-1.11.1
gst-plugins-ugly-1.11.2
gst-plugins-ugly-1.11.90
gst-plugins-ugly-1.11.91
gst-plugins-ugly-1.12.0
gst-plugins-ugly-1.13.1
gst-plugins-ugly-1.13.90
gst-plugins-ugly-1.13.91
gst-plugins-ugly-1.14.0
gst-plugins-ugly-1.15.1
gst-plugins-ugly-1.15.2
gst-plugins-ugly-1.15.90
gst-plugins-ugly-1.16.0
gst-plugins-ugly-1.17.1
gst-plugins-ugly-1.17.2
gst-plugins-ugly-1.17.90
gst-plugins-ugly-1.18.0
gst-plugins-ugly-1.19.1
gst-plugins-ugly-1.19.2
gst-plugins-ugly-1.2.0
gst-plugins-ugly-1.3.1
gst-plugins-ugly-1.3.2
gst-plugins-ugly-1.3.3
gst-plugins-ugly-1.3.90
gst-plugins-ugly-1.3.91
gst-plugins-ugly-1.4.0
gst-plugins-ugly-1.5.1
gst-plugins-ugly-1.5.2
gst-plugins-ugly-1.5.90
gst-plugins-ugly-1.5.91
gst-plugins-ugly-1.6.0
gst-plugins-ugly-1.7.1
gst-plugins-ugly-1.7.2
gst-plugins-ugly-1.7.90
gst-plugins-ugly-1.7.91
gst-plugins-ugly-1.8.0
gst-plugins-ugly-1.9.1
gst-plugins-ugly-1.9.2
gst-plugins-ugly-1.9.90
gst-python-0.*
gst-python-0.1.0
gst-python-0.10.0
gst-python-0.10.1
gst-python-0.10.10
gst-python-0.10.11
gst-python-0.10.12
gst-python-0.10.13
gst-python-0.10.14
gst-python-0.10.15
gst-python-0.10.16
gst-python-0.10.17
gst-python-0.10.18
gst-python-0.10.19
gst-python-0.10.2
gst-python-0.10.20
gst-python-0.10.21
gst-python-0.10.22
gst-python-0.10.3
gst-python-0.10.4
gst-python-0.10.5
gst-python-0.10.6
gst-python-0.10.7
gst-python-0.10.8
gst-python-0.10.9
gst-python-0.7.90
gst-python-0.7.91
gst-python-0.7.92
gst-python-0.7.93
gst-python-0.7.94
gst-python-0.8.0
gst-python-0.8.1
gst-python-0.9.3
gst-python-0.9.4
gst-python-0.9.5
gst-python-0.9.6
gst-python-0.9.7
gst-python-1.*
gst-python-1.1.90
gst-python-1.10.0
gst-python-1.11.0
gst-python-1.11.1
gst-python-1.11.2
gst-python-1.11.90
gst-python-1.11.91
gst-python-1.12.0
gst-python-1.13.1
gst-python-1.13.90
gst-python-1.13.91
gst-python-1.14.0
gst-python-1.15.1
gst-python-1.15.2
gst-python-1.15.90
gst-python-1.16.0
gst-python-1.17.1
gst-python-1.17.2
gst-python-1.17.90
gst-python-1.18.0
gst-python-1.19.1
gst-python-1.19.2
gst-python-1.2.0
gst-python-1.3.90
gst-python-1.4.0
gst-python-1.5.2
gst-python-1.6.0
gst-python-1.7.1
gst-python-1.7.2
gst-python-1.7.90
gst-python-1.7.91
gst-python-1.8.0
gst-python-1.9.1
gst-python-1.9.2
gst-python-1.9.90
gst-rtsp-server-0.*
gst-rtsp-server-0.10.1
gst-rtsp-server-0.10.2
gst-rtsp-server-0.10.3
gst-rtsp-server-0.10.4
gst-rtsp-server-0.10.5
gst-rtsp-server-0.10.6
gst-rtsp-server-0.10.7
gst-rtsp-server-0.10.8
gst-rtsp-server-1.*
gst-rtsp-server-1.10.0
gst-rtsp-server-1.11.0
gst-rtsp-server-1.11.1
gst-rtsp-server-1.11.2
gst-rtsp-server-1.11.90
gst-rtsp-server-1.11.91
gst-rtsp-server-1.12.0
gst-rtsp-server-1.13.1
gst-rtsp-server-1.13.90
gst-rtsp-server-1.13.91
gst-rtsp-server-1.14.0
gst-rtsp-server-1.15.1
gst-rtsp-server-1.15.2
gst-rtsp-server-1.15.90
gst-rtsp-server-1.16.0
gst-rtsp-server-1.17.1
gst-rtsp-server-1.17.2
gst-rtsp-server-1.17.90
gst-rtsp-server-1.18.0
gst-rtsp-server-1.19.1
gst-rtsp-server-1.19.2
gst-rtsp-server-1.3.1
gst-rtsp-server-1.3.2
gst-rtsp-server-1.3.3
gst-rtsp-server-1.3.90
gst-rtsp-server-1.3.91
gst-rtsp-server-1.4.0
gst-rtsp-server-1.5.1
gst-rtsp-server-1.5.2
gst-rtsp-server-1.5.90
gst-rtsp-server-1.5.91
gst-rtsp-server-1.6.0
gst-rtsp-server-1.7.1
gst-rtsp-server-1.7.2
gst-rtsp-server-1.7.90
gst-rtsp-server-1.7.91
gst-rtsp-server-1.8.0
gst-rtsp-server-1.9.1
gst-rtsp-server-1.9.2
gst-rtsp-server-1.9.90
gstreamer-sharp-0.*
gstreamer-sharp-0.9.0
gstreamer-sharp-0.9.1
gstreamer-sharp-0.9.2
gstreamer-sharp-0.99.0
gstreamer-sharp-1.*
gstreamer-sharp-1.13.0.1
gstreamer-sharp-1.13.91
gstreamer-sharp-1.14.0
gstreamer-sharp-1.15.2
gstreamer-sharp-1.15.90
gstreamer-sharp-1.16.0
gstreamer-sharp-1.17.1
gstreamer-sharp-1.17.2
gstreamer-sharp-1.17.90
gstreamer-sharp-1.18.0
gstreamer-sharp-1.19.1
gstreamer-sharp-1.19.2
gstreamer-vaapi-0.*
gstreamer-vaapi-0.5.10
gstreamer-vaapi-0.6.0
gstreamer-vaapi-0.7.0
gstreamer-vaapi-1.*
gstreamer-vaapi-1.10.0
gstreamer-vaapi-1.11.0
gstreamer-vaapi-1.11.1
gstreamer-vaapi-1.11.2
gstreamer-vaapi-1.11.90
gstreamer-vaapi-1.11.91
gstreamer-vaapi-1.12.0
gstreamer-vaapi-1.13.1
gstreamer-vaapi-1.13.90
gstreamer-vaapi-1.13.91
gstreamer-vaapi-1.14.0
gstreamer-vaapi-1.15.1
gstreamer-vaapi-1.15.2
gstreamer-vaapi-1.15.90
gstreamer-vaapi-1.16.0
gstreamer-vaapi-1.17.1
gstreamer-vaapi-1.17.2
gstreamer-vaapi-1.17.90
gstreamer-vaapi-1.18.0
gstreamer-vaapi-1.19.1
gstreamer-vaapi-1.19.2
gstreamer-vaapi-1.6.0
gstreamer-vaapi-1.7.90
gstreamer-vaapi-1.7.91
gstreamer-vaapi-1.8.0
gstreamer-vaapi-1.9.1
gstreamer-vaapi-1.9.2
gstreamer-vaapi-1.9.90
Database specific
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-2923.json"
vanir_signatures
[
{
"digest": {
"line_hashes": [
"88509630988559440288017817459783572444",
"161492070524781027918803299839300537733",
"95940441084868425017144949365656191654",
"176469428776325978617280013257309665356",
"244672894378666749135053040719644820244",
"221844690268919236382923352920440360125",
"35558301871778187848715120134665634366",
"171348326882516806382448515431209904294",
"76439546031843848497292442452939042555",
"205655252708485721522979677822876102785",
"253107649395994768661591827007101812650",
"292505454661135620150501959248019234695",
"78526808942719236464760353851867253536",
"132625317024175395646513195198276597065",
"152627087340308826459906683599146144657",
"7862491561330321303041030449303588437",
"221286968218854267295000241304231394563",
"219039615484399534435939521026156474869",
"164495320867954403861758582536416069561",
"23640356570274031236789724488556349140",
"137989284984781670840096312707847277621",
"18099131300711179596300539055283072583",
"37448561280541226046637920798191033481",
"228235648282631466342758327927277080866",
"193001799661191916342344940143733214085",
"83031682098212659464568120317621415039",
"156700179210796120846606552767921412805",
"296707064875155706133832149502009425631",
"26829759538844010670950034827297185998",
"71207740858201184702995579907003780756",
"90816470097209850941541684176571354737",
"316015519142027397918489776836822638268",
"20253938363727520947583099138071862458",
"323487439429925366741454680965189413792",
"33118516881054582406116863629016122771",
"158636721048303222630672401647383077751",
"269928796186876071426892606903566756047",
"205767546921755425653791921233614338096",
"254189561715371912872271755173155784437",
"141352782153029588075823763319986147501",
"69797610292476266121297700936746886024",
"99871441478060969218493938638685813004",
"25789979642075600009201923191837784921",
"162651513148491984504761516889805193745",
"299915686298596651669050864586939286010",
"94160134439762184163567743416004444084",
"178994293512719745414793760833947438069",
"325107651062990400987862396018188261754",
"96232291789133276615952797806432292431",
"139581033656534985466238641944212945051",
"192328522543459247557122628468663367993",
"206814828724175603200631877536987601140",
"273796379189557744972576159770883670037",
"15445324026596178665987593914221023526",
"201806055543837117302886737335613320311",
"276139480699084563992022822671039152743",
"139062191816520155839444766155374042804",
"260415448303964380856501830746482475622",
"163379959204166507138983862923038525943",
"280843361019959023021941702298122017596",
"137015583049504591049566168852179178413",
"173295355981683529042826468728101464629",
"112756397164312050071715200497839713045",
"193001799661191916342344940143733214085",
"83031682098212659464568120317621415039",
"156700179210796120846606552767921412805",
"180789735683032894415224477169101549115",
"236227857565836111708816666585157549719",
"63003923754976785199249318729892848725",
"193986700647995273937672400068402847808",
"316015519142027397918489776836822638268",
"20253938363727520947583099138071862458",
"52792312314765776066331523893185012496",
"196172738104675701619638086245556743591",
"191247399505364619513101630360865703982",
"73184608137412825466281164087954241783",
"124790096448719211140666412412482877897",
"244068526113817271852478860358820169249",
"275981425879806539462171162313127872851",
"3789507016577749477863248174326655667",
"51329058218926211002962517627921484670",
"277046336054839374798842334912135685244",
"89880672408205048644461081047614362906",
"75945140843841342474540085705953443299",
"193572488631385463843725977077578124029",
"11230513972038721396164475424291465878",
"115881098946983069181461516401239208397",
"11197927368260163314724480129367776351",
"299915686298596651669050864586939286010",
"275443490946953349771293146819773499941",
"178994293512719745414793760833947438069",
"40592118855272772786990398438047237299",
"295841865686170669205334056951268725685",
"85964986042491716146968073376103942264",
"277679051849877933188453302064486770661",
"258583987760830702087158120096179888499",
"166616616542068356526487348878677027441",
"56194943340287629832378584772832128219",
"118533959226614468642495741544081412158",
"25176078237710101182445458883128509241",
"72421923446707680286900857638935872710",
"260415448303964380856501830746482475622",
"63446175228471881612144856854631633900",
"65645961209097386067010561064589769130",
"143140112627089824921245133871540017277",
"206832613243938519693524849842263144371",
"24895966997565794564002318982339107521",
"193001799661191916342344940143733214085",
"83031682098212659464568120317621415039",
"156700179210796120846606552767921412805",
"64776977886729040027353045934331359462",
"169245719844424311298323797411005179813",
"214104274608147871400565952849106336533",
"150475098154668200900956716356723571240",
"316015519142027397918489776836822638268",
"20253938363727520947583099138071862458",
"52792312314765776066331523893185012496",
"263585414825353777084290177955014567378",
"36691586866934423636365032717376807297",
"104835841576635334973452394253841255400",
"332303421497538377893847888705585955116",
"212656038756240914771846512849099602390",
"141127709631587333711901462401374283273",
"272688257182879776907521260753369633073",
"237703539247680349384787667174362404420",
"302625987876846416118919207583742640609",
"122539639185211426945599687330604777227",
"322666031428802316631185226660798212916",
"188484620012721297657638116415676927279",
"168291089524996823275195317508518828789",
"251281561870456493031352029579000317293",
"112757191536748428909621515310930724401",
"157364110656859031916050550982771695415",
"47200949761371602426144793019890442262",
"14151707077548076154053144513458370264",
"198241987639874688103248711881140582500",
"69273063157944643118827517132765983023",
"109910465399388423935289687637657680050",
"126317887143276664040394219111920607780",
"257348866655398003669633309426718283890",
"230515376701362152101850622276822313895",
"249421880199284530172081229089212776562",
"293699906942071766041570971751912221200",
"274172432624121590031881499517763686911",
"8669042285832564921491170570136997799",
"73799098679335869678629907416879451806",
"333702859412735351288561388865807120006",
"90739095752438221881288019675424357709",
"70289295559611391349440386216398471674",
"147785843693322309139933228850803753639",
"42934786267338745090081183099110194434",
"8463054799951106083916524692161605324",
"166073503955940221663219984806593759246",
"138843792091242242082618931555100884132",
"8669042285832564921491170570136997799",
"186657419367510616549379085314164049652",
"89476677902734689832191627857480112344",
"60129014752561729810309122718255191509",
"105507136196289857458828565028878727526",
"173417012760076037679260529291602899555",
"209649572768957674432849257029582869826",
"305678700092421163007425543019465855830",
"282507326960804527920896421779548259066",
"336857932865304465792077042284814089818",
"163051272520967993722216959734961789459",
"73799098679335869678629907416879451806",
"333702859412735351288561388865807120006",
"90739095752438221881288019675424357709",
"41017275418814603595477475018143838530",
"215690492763531754591347850342397800630",
"144837570469707911495317620952520670449",
"144368942596348034409240668523915489334",
"183949162757088740063599807161389174287",
"318184103280009376296847338738628982249",
"318774167269095229392371860728758051596",
"265947575540539692708381968245525371461",
"309284553471259707178001071533379614566",
"298368605227330756512430259809473063213",
"3116595960677313351929352532390548572",
"330420306911899068443044492433432555464",
"277579359604750588079845818639244011475",
"72208444543425412375495805106654843629",
"298658688290865121390716523127985516263",
"202628181416463992080031183847040887623",
"281080305652480733228631040333092926564",
"120080526643708674282000303018747675664",
"79575100319993844142534408419047508001",
"327792205446761091902328592064852095777",
"335534907315771663790622580890142702153",
"56167960708856005813553972952267156764",
"84478693286414826197733128314255985877"
],
"threshold": 0.9
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c"
},
"id": "CVE-2026-2923-15bd2327",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Line"
},
{
"digest": {
"function_hash": "80520085186631657618328970649418221928",
"length": 1310.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_parse_object_segment"
},
"id": "CVE-2026-2923-24f4a885",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "307471870222719027115410191965072688014",
"length": 1174.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_read_8bit_string"
},
"id": "CVE-2026-2923-3e0e57ec",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "301701878148743377785593418920701116993",
"length": 1534.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_read_4bit_string"
},
"id": "CVE-2026-2923-4a5fffa3",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "80340366577501165084854690316119093622",
"length": 3379.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_parse_pixel_data_block"
},
"id": "CVE-2026-2923-a3d94875",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "65676625540122018386282799821579057533",
"length": 1352.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_parse_clut_segment"
},
"id": "CVE-2026-2923-a6b95590",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
},
{
"digest": {
"function_hash": "238935800732324558105533063564905861610",
"length": 1371.0
},
"target": {
"file": "subprojects/gst-plugins-bad/gst/dvbsuboverlay/dvb-sub.c",
"function": "_dvb_sub_read_2bit_string"
},
"id": "CVE-2026-2923-c62e008d",
"deprecated": false,
"source": "https://gitlab.freedesktop.org/gstreamer/gstreamer@3b8253f447bcc9831dbf643d2c69b205fedbe086",
"signature_version": "v1",
"signature_type": "Function"
}
]