Debian alert DLA-2644-1 (gst-libav1.0)
| From: | Emilio Pozuelo Monfort <pochu@debian.org> | |
| To: | debian-lts-announce@lists.debian.org | |
| Subject: | [SECURITY] [DLA 2644-1] gst-libav1.0 security update | |
| Date: | Tue, 27 Apr 2021 12:38:47 +0200 | |
| Message-ID: | <20210427103847.104D32A039A@andromeda> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2644-1 debian-lts@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort April 27, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : gst-libav1.0 Version : 1.10.4-1+deb9u1 CVE ID : not yet available Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. For Debian 9 stretch, this problem has been fixed in version 1.10.4-1+deb9u1. We recommend that you upgrade your gst-libav1.0 packages. For the detailed security status of gst-libav1.0 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/gst-libav1.0 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmCH6bYACgkQnUbEiOQ2 gwK8Hw//dAkKtbIOy2QmqvJsIMTgojMdhc1QRdsBFGELPuESDZswN6sUoblfNaQj uX0R9lmuTotvdhwtp3+lur+AEqErGOAMamb5ou5TwY0w97ZOeA4jai0BuZNA9mqo ysXdkc7qwmLTDxmES8L944+rlGGepRRMzKsQKYocj7p/Ztx0OItNXah9/jGVVC2B OZDtvod03bQ0CjxI+W/OD1Z26a4I/QAH+RZbVSjc/XQT0G6iPgycDxhrZ0iXgry1 vZTsUqrLWNPZHdiNb0BQYeGTNB7VBvcnR1mPqhVynKX1GV+/WGkiVBICaYwm4FDW +K8FuxsACHeSh2se3CapbY/TNe24p7uxG5qZNqeUilDD/Pb0x1C2/HjRG7kkyr7G vIkh2CnJJ5tXe4HQ9KHcnO9FbW/yL6DwoHmfjE2Scc1Ru4C1ehPHynUwkQIHNbYc fmC5MuZvGLwWIcwSRpQy7CsXQbYr59P0JDKQmimsXZ+FVwM+6WkIor5N/4xywA0F /q4u0oAWl2jTglZ8ARJlNhQpWSLPRd1U97a4ahTzPrVvE3p36SB+AK5qOBdQa3qx +jiU7wAHGC0lfchbYSXf0FoAk9qguf4on4NoQv+ujkIk8NuH0FWNuVpeBHu7hAaa VsJXhTWqfL58G10BJGFIhbKtsyfD/zpcxRovvYhA9Q6EZEEIEWg= =PRuH -----END PGP SIGNATURE-----