gst-plugins-base-libs: multiple vulnerabilities
Package(s): | gst-plugins-base-libs | CVE #(s): | CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 | ||||||||||||
Created: | February 6, 2017 | Updated: | February 21, 2017 | ||||||||||||
Description: | From the Arch Linux advisory:
- CVE-2017-5837 (denial of service): A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps. - CVE-2017-5839 (denial of service): An endless recursion issue leading to stack overflow has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps. - CVE-2017-5842 (arbitrary code execution): An off-by-one write has been found in gstreamer before 1.10.3, in html_context_handle_element. - CVE-2017-5844 (denial of service): A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps. | ||||||||||||||
Alerts: |
|