Name of the Vulnerable Software and Affected Versions GStreamer versions prior to 1.18.4

Description The issue is related to the handling of certain malformed files, which could lead to memory access errors, heap corruption, or out-of-bounds reads. Specifically, this occurs when demuxing malformed Matroska files, parsing certain RealMedia files or streams, or handling streams with more than 64 audio channels. A malicious third party might be able to trigger a crash or potentially execute arbitrary code with the privileges of the target user.

Recommendations For versions prior to 1.18.4, update to version 1.18.4 or later to resolve the issue. As a temporary workaround, consider avoiding the use of malformed files or streams that could trigger the error. Restrict access to files or streams that have more than 64 audio channels to minimize the risk of exploitation.