|
|
Subscribe / Log in / New account

Mageia alert MGASA-2018-0015 (gstreamer0.10-plugins-ugly)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2018-0015: Updated gstreamer0.10-plugins-ugly packages fix security vulnerability 


Date:
    	      Mon, 1 Jan 2018 16:51:11 +0100


Message-ID:
    	      <20180101155111.383059FD90@duvel.mageia.org>


MGASA-2018-0015 - Updated gstreamer0.10-plugins-ugly packages fix security vulnerability

Publication date: 01 Jan 2018
URL: https://advisories.mageia.org/MGASA-2018-0015.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2017-5846,
     CVE-2017-5847

Description:
Hanno Boeck discovered multiple vulnerabilities in the GStreamer media
framework and its codecs and demuxers, which may result in denial of
service or the execution of arbitrary code if a malformed media file is
opened (CVE-2017-5846, CVE-2017-5847).

References:
- https://bugs.mageia.org/show_bug.cgi?id=20239
- https://lwn.net/Alerts/714998/
- https://www.debian.org/security/2017/dsa-3821
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5846
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5847

SRPMS:
- 6/tainted/gstreamer0.10-plugins-ugly-0.10.19-18.1.mga6.tainted
- 6/core/gstreamer0.10-plugins-ugly-0.10.19-18.1.mga6
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds