CVEFinder.io

CVE-2026-1940

πŸ”Ά medium
πŸ” Scan for this CVE
Summary

An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function. The patch added a size validation check lsize + 8 > size, but it does not account for the GST_ROUND_UP_2(lsize) used in the actual offset calculation. When lsize is an odd number, the parser advances more bytes than validated, causing OOB read.

CVSS Score
5.1
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2026-03-23
First Seen: 2026-03-24
πŸ“Š Relative Risk Intelligence

This CVE is Lower Risk - more severe than 19.8% of all 322,079 vulnerabilities in our database.

#258,393
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: Mar 24, 2026
πŸ” Exploitation Status
None
No known exploits
βš™οΈ Automatable
NO
Requires human interaction
πŸ’₯ Technical Impact
Partial
Limited system impact
πŸ† Discovered By
Red Hat would like to thank wooseokdotkim for reporting this issue.
SSVC data provided by CISA
Last Modified 2026-05-04
Source NVD πŸ”—
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
CWE IDs (Weakness Types)
CWE-125

πŸ“¦ Affected Products 7

Vendor Product Status Affected Versions
debian debian_linux Affected
v11.0
debian debian_linux Affected
v12.0
redhat enterprise_linux Affected
v10.0
redhat enterprise_linux Affected
v7.0
redhat enterprise_linux Affected
v8.0
redhat enterprise_linux Affected
v9.0
gstreamer gstreamer Affected
< 1.28.1

πŸ”— References 5

https://access.redhat.com/security/cve/CVE-2026-1940
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2436932
Issue Tracking Vendor Advisory
https://gitlab.freedesktop.org/gstreamer/gstreamer/-...
Broken Link
https://gstreamer.freedesktop.org/security/sa-2026-0...
Vendor Advisory
https://security-tracker.debian.org/tracker/CVE-2026...
Third Party Advisory

πŸ”— Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-42010 ⚠️ high 7.1 0.2 A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully ma... 2026-05-07
CVE-2026-34000 πŸ”Ά medium 6.1 0.0 A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifical... 2026-05-05
CVE-2026-34002 πŸ”Ά medium 6.1 0.0 A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension... 2026-05-05
CVE-2026-33845 ⚠️ high 7.5 0.0 A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an i... 2026-04-30
CVE-2026-3832 ℹ️ low 3.7 0.0 A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online ... 2026-04-30
CVE-2026-3833 πŸ”Ά medium 6.5 0.1 A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstra... 2026-04-30
These CVEs affect the same products