|
|
Subscribe / Log in / New account

gstreamer0.10-plugins-good: arbitrary code execution

Package(s):gstreamer0.10-plugins-good CVE #(s):CVE-2009-1932
Created:June 8, 2009 Updated:December 4, 2009
Description:

From the Mandriva advisory:

Multiple integer overflows in the (1) user_info_callback, (2) user_endrow_callback, and (3) gst_pngdec_task functions (ext/libpng/gstpngdec.c) in GStreamer Good Plug-ins (aka gst-plugins-good or gstreamer-plugins-good) 0.10.15 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PNG file, which triggers a buffer overflow (CVE-2009-1932).

Alerts:
Mandriva MDVSA-2009:130-1 gstreamer0.10-plugins-good 2009-12-03
Debian DSA-1839-1 gst-plugins-good0.10 2009-07-19
Gentoo 200907-11 gst-plugins-good 2009-07-12
CentOS CESA-2009:1123 gstreamer-plugins-good 2009-06-26
Red Hat RHSA-2009:1123-01 gstreamer-plugins-good 2009-06-25
Ubuntu USN-789-1 gst-plugins-good0.10 2009-06-22
Mandriva MDVSA-2009:130 gstreamer0.10-plugins-good 2009-06-05
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds