CVE Catalog

CVE-2026-53704

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

8th percentile - higher than 8% of all known CVEs

Summary

A flaw in GStreamer's RealMedia demuxer (gst-plugins-ugly) lacks offset validation when parsing FILEINFO metadata. A crafted RealMedia file can cause an infinite loop or out-of-bounds read.

Risk Assessment

The risk includes application hangs or crashes, and potentially limited disclosure of adjacent memory contents, compromising data confidentiality.

Recommendation

Immediately update the gst-plugins-ugly package to a patched version. Until updated, avoid processing untrusted RealMedia files.

Original NVD description (English source)

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using re_skip_pascal_string() without validating that offsets remain within the mapped buffer. Additionally, the element count controlling the parsing loop is read from attacker-controlled data without validation, which can cause an infinite loop. A crafted RealMedia file can cause the application to crash, hang, or potentially read limited adjacent memory contents.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS