In the GStreamer multimedia framework used in GNOME, 10 vulnerabilities have been identified. All of these vulnerabilities are flagged as potentially allowing remote code execution when processing multimedia data in various formats such as AVI, RTP, H.266, JPEG, ASF, RealMedia, and DVB-SUB subtitles. Among these vulnerabilities, two are rated with a severity level of 8.8 out of 10, while the rest are rated at 7.8. Eight vulnerabilities can lead to out-of-bounds data writing, while two can lead to integer overflow.
- CVE-2026-3085, CVE-2026-3083 – These vulnerabilities are caused by a buffer overflow in the rtp plugin due to insufficient size and data checks when processing X-QDM RTP fields.
- CVE-2026-2923 – A buffer overflow occurs when processing incorrect coordinates in DVB-SUB subtitles.
- CVE-2026-3081 – This vulnerability is a buffer overflow caused by improper size check of structures when parsing the H.266 format (VVC, Versatile Video Coding).
- CVE-2026-3082 – Buffer overflow due to lack of proper size checks when parsing Huffman tables in JPEG images.
- CVE-2026-2920 – Buffer overflow due to lack of proper size checks when parsing ASF media container headers.
- CVE-2026-2922 – Buffer overflow due to
/Reports, release notes, official announcements.