CVE-2024-47540: 
NixOS vulnerability analysis and mitigation

GStreamer, a library for constructing graphs of media-handling components, was found to contain an uninitialized stack variable vulnerability in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. The vulnerability, identified as CVE-2024-47540, was discovered and reported by Antonio Morales from the GitHub Security Lab team. The issue affects versions prior to 1.24.10 and was fixed on December 3, 2024 ([GitHub Advisory](https://securitylab.github.com/advisories/GHSL-2024-197GStreamer/), GStreamer Advisory).

The vulnerability occurs when size < 4, where the program calls gstbufferunmap with an uninitialized map variable. Subsequently, in the gstmemoryunmap function, the program attempts to unmap the buffer using this uninitialized map variable, causing a function pointer hijack as it will jump to mem->allocator->memunmapfull or mem->allocator->mem_unmap. The vulnerability has received a CVSS v3.1 base score of 9.8 (CRITICAL) with vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (NVD).

This vulnerability could allow an attacker to hijack the execution flow, potentially leading to code execution. The severity of the impact is reflected in its CRITICAL CVSS score, indicating the potential for complete compromise of system confidentiality, integrity, and availability (GitHub Advisory).

The vulnerability has been fixed in GStreamer version 1.24.10. Users of older versions are advised to update to this version or apply and recompile with the available patch. Red Hat has also released security updates for affected products to address this vulnerability (GStreamer Advisory, Red Hat Advisory).