Media Gateway

Media Gateway is a reference container for Holoscan for Media, built on DeepStream. It adds a GStreamer element, nvdsnmosbin, that allows the registration and management of NMOS senders and receivers corresponding to ST 2110 sinks and sources in a flexible GStreamer pipeline passed to the container.

For a video walk-through of the technology, see Bringing Up a NMOS-Capable ST 2110 Media Processing Node in 30 Minutes from the IP Showcase On The Water at IBC 2023.

Install and Run The Application

To install and run the application under Kubernetes, refer to the Helm chart or the Local Developer Setup with Kubernetes guide.

To install and run the application under Docker, refer to the Local Developer Setup with Docker.

Source Code and Dependencies

A source tarball for Media Gateway can be downloaded from the Media Gateway resource.

Media Gateway is built on open-source software. The notices, attribution, licenses and source code for these dependencies can also be downloaded from the resource.

License

By downloading and using this software, you accept the terms and conditions of the NVIDIA AI Product Agreement.

🔒 Security Advisory

CVE: CVE-2025-3887 Severity: High

Description:
A known vulnerability has been identified in the current release of Media Gateway container which is related to internal GStreamer component H.265 codec parser. There is stack buffer-overflow in H.265 codec parser when handling malformed streams before GStreamer 1.26.1.

Impact:
It is possible for a malicious third party to trigger stack buffer-overflows that can result in a crash of the application.

Resolution:
This vulnerability has been addressed in the upstream gst-plugins-bad 1.26.1 release. The fix will be incorporated into the next version of the Media Gateway container. In the meantime, users are strongly advised to restrict external access to the container and to adhere to standard security hardening practices to mitigate risk.