|
|
Subscribe / Log in / New account

gst-plugins-base-libs: multiple vulnerabilities

Package(s):gst-plugins-base-libs CVE #(s):CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844
Created:February 6, 2017 Updated:February 21, 2017
Description: From the Arch Linux advisory:

- CVE-2017-5837 (denial of service): A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.

- CVE-2017-5839 (denial of service): An endless recursion issue leading to stack overflow has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.

- CVE-2017-5842 (arbitrary code execution): An off-by-one write has been found in gstreamer before 1.10.3, in html_context_handle_element.

- CVE-2017-5844 (denial of service): A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.

Alerts:
Fedora FEDORA-2017-a56d78acb8 mingw-gstreamer1-plugins-base 2017-02-20
Debian-LTS DLA-827-1 gst-plugins-base0.10 2017-02-18
Arch Linux ASA-201702-4 gst-plugins-base-libs 2017-02-05

to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds