CVE-2026-53704
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk8th percentile - higher than 8% of all known CVEs
Summary
A flaw in GStreamer's RealMedia demuxer (gst-plugins-ugly) lacks offset validation when parsing FILEINFO metadata. A crafted RealMedia file can cause an infinite loop or out-of-bounds read.
Risk Assessment
The risk includes application hangs or crashes, and potentially limited disclosure of adjacent memory contents, compromising data confidentiality.
Recommendation
Immediately update the gst-plugins-ugly package to a patched version. Until updated, avoid processing untrusted RealMedia files.
Original NVD description (English source)
A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using re_skip_pascal_string() without validating that offsets remain within the mapped buffer. Additionally, the element count controlling the parsing loop is read from attacker-controlled data without validation, which can cause an infinite loop. A crafted RealMedia file can cause the application to crash, hang, or potentially read limited adjacent memory contents.

