|
|
Log in / Subscribe / Register

Fedora alert FEDORA-2026-3cc99e7d09 (mingw-gstreamer1-plugins-base)



From:
              updates--- via package-announce <package-announce@lists.fedoraproject.org>


To:
              package-announce@lists.fedoraproject.org


Subject:
              [SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-base-1.26.11-1.fc42


Date:
              Sun, 05 Apr 2026 01:00:37 +0000


Message-ID:
              <20260405010037.CED347963C@bastion01.rdu3.fedoraproject.org>


Archive-link:
              Article


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-3cc99e7d09
2026-04-05 00:58:39.922003+00:00
--------------------------------------------------------------------------------

Name        : mingw-gstreamer1-plugins-base
Product     : Fedora 42
Version     : 1.26.11
Release     : 1.fc42
URL         : http://gstreamer.freedesktop.org/
Summary     : Cross compiled GStreamer1 media framework base plug-ins
Description :
GStreamer is a streaming media framework, based on graphs of filters which
operate on media data. Applications using this library can do anything
from real-time sound processing to playing videos, and just about anything
else media-related.  Its plugin-based architecture means that new data
types or processing capabilities can be added simply by installing new
plug-ins.

This package contains a set of well-maintained base plug-ins.

--------------------------------------------------------------------------------
Update Information:

Update to gstreamer-1.26.11.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 27 2026 Sandro Mani <manisandro@gmail.com> - 1.26.11-1
- Update to 1.26.11
* Thu Jul 24 2025 Fedora Release Engineering <releng@fedoraproject.org> - 1.26.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2447936 - CVE-2026-2920 mingw-gstreamer1: GStreamer: Arbitrary code execution via ASF
file processing [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2447936
  [ 2 ] Bug #2448013 - CVE-2026-3084 mingw-gstreamer1: GStreamer: Remote Code Execution via integer
underflow in H.266 Codec Parser [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448013
  [ 3 ] Bug #2448019 - CVE-2026-2922 mingw-gstreamer1: GStreamer: Remote Code Execution via
out-of-bounds write in RealMedia Demuxer [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448019
  [ 4 ] Bug #2448020 - CVE-2026-2921 mingw-gstreamer1: GStreamer: Arbitrary code execution via RIFF
palette integer overflow in AVI file handling [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448020
  [ 5 ] Bug #2448021 - CVE-2026-2923 mingw-gstreamer1: GStreamer: Remote Code Execution via
out-of-bounds write in DVB Subtitles handling [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448021
  [ 6 ] Bug #2448022 - CVE-2026-3085 mingw-gstreamer1: GStreamer: Remote Code Execution via
Heap-based Buffer Overflow in rtpqdm2depay [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448022
  [ 7 ] Bug #2448029 - CVE-2026-3081 mingw-gstreamer1: GStreamer: Arbitrary code execution via
H.266 codec parsing stack-based buffer overflow [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448029
  [ 8 ] Bug #2448030 - CVE-2026-3083 mingw-gstreamer1: GStreamer: Remote Code Execution via
Out-Of-Bounds Write in rtpqdm2depay [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448030
  [ 9 ] Bug #2448032 - CVE-2026-3086 mingw-gstreamer1: GStreamer: Remote Code Execution via
Out-Of-Bounds Write in H.266 Codec Parser [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448032
  [ 10 ] Bug #2448038 - CVE-2026-3082 mingw-gstreamer1: GStreamer: Remote Code Execution via
heap-based buffer overflow in JPEG parser [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2448038
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-3cc99e7d09' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgr...

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

-- 
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-cond...
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/package-ann...
Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds