CVE-2024-47834

Name of the Vulnerable Software and Affected Versions GStreamer versions prior to 1.24.10

Description The issue is related to a use-after-free vulnerability in the GStreamer multimedia framework. This vulnerability is associated with the processing of CodecPrivate elements in Matroska streams. Specifically, in the GST MATROSKA ID CODECPRIVATE case within the gst matroska demux parse stream function, a data chunk is allocated using gst ebml read binary. Later, the allocated memory is freed in the gst matroska track free function through the call to g free (track->codec priv). However, the freed memory is accessed in the caps serialize function through gst value serialize buffer, resulting in a use-after-free read vulnerability. This occurs because the function attempts to process memory that has already been freed.

Recommendations For GStreamer versions prior to 1.24.10, update to version 1.24.10 or later to resolve the issue. As a temporary workaround, consider restricting access to the gst matroska demux parse stream function and the gst value serialize buffer function until a patch is available. Avoid using the gst ebml read binary function in the affected API endpoint until the issue is resolved.