|
|
Log in / Subscribe / Register

Ubuntu alert USN-7837-1 (gst-plugins-good1.0)



From:
              noreply+usn-bot@canonical.com


To:
              ubuntu-security-announce@lists.ubuntu.com


Subject:
              [USN-7837-1] GStreamer Good Plugins vulnerability


Date:
              Mon, 27 Oct 2025 22:24:54 +0000


Message-ID:
              <E1vDVe2-0000AE-OP@lists.ubuntu.com>


==========================================================================
Ubuntu Security Notice USN-7837-1
October 22, 2025

gst-plugins-good1.0 vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS

Summary:

GStreamer Good Plugins could be made to crash as your login if it opened a
specially crafted file.

Software Description:
- gst-plugins-good1.0: GStreamer plugins

Details:

Shaun Mirani discovered that GStreamer Good Plugins incorrectly handled
certain malformed media files. An attacker could possibly use this issue to
cause GStreamer Good Plugins to crash, resulting in a denial of service, or
disclose sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
  gstreamer1.0-gtk3               1.16.3-0ubuntu1.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-plugins-good       1.16.3-0ubuntu1.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-pulseaudio         1.16.3-0ubuntu1.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-qt5                1.16.3-0ubuntu1.3+esm1
                                  Available with Ubuntu Pro
  libgstreamer-plugins-good1.0-0  1.16.3-0ubuntu1.3+esm1
                                  Available with Ubuntu Pro

Ubuntu 18.04 LTS
  gstreamer1.0-gtk3               1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-plugins-good       1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-pulseaudio         1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro
  gstreamer1.0-qt5                1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro
  libgstreamer-plugins-good1.0-0  1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-7837-1
  CVE-2025-47219




Attachment: signature.asc (type=application/pgp-signature)

-----BEGIN PGP SIGNATURE-----
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=8Lsk
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds