ALT-PU-2020-1780-1
Package gst-plugins0.10-base updated to version 0.10.36-alt3 for branch sisyphus in task 250294.
Closed vulnerabilities
BDU:2019-02505
Уязвимость синтаксического анализатора RTSP-соединений мультимедийного фреймворка Gstreamer, позволяющая нарушителю выполнить произвольный код
Modified: 2024-11-21
CVE-2017-5837
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file.
- DSA-3819
- DSA-3819
- [oss-security] 20170201 Multiple memory access issues in gstreamer
- [oss-security] 20170201 Multiple memory access issues in gstreamer
- [oss-security] 20170202 Re: Multiple memory access issues in gstreamer
- [oss-security] 20170202 Re: Multiple memory access issues in gstreamer
- 96001
- 96001
- RHSA-2017:2060
- RHSA-2017:2060
- https://bugzilla.gnome.org/show_bug.cgi?id=777262
- https://bugzilla.gnome.org/show_bug.cgi?id=777262
- https://gstreamer.freedesktop.org/releases/1.10/#1.10.3
- https://gstreamer.freedesktop.org/releases/1.10/#1.10.3
- [debian-lts-announce] 20200228 [SECURITY] [DLA 2126-1] gst-plugins-base0.10 security update
- [debian-lts-announce] 20200228 [SECURITY] [DLA 2126-1] gst-plugins-base0.10 security update
- GLSA-201705-10
- GLSA-201705-10
Modified: 2024-11-21
CVE-2017-5844
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.
- DSA-3819
- DSA-3819
- [oss-security] 20170201 Multiple memory access issues in gstreamer
- [oss-security] 20170201 Multiple memory access issues in gstreamer
- [oss-security] 20170202 Re: Multiple memory access issues in gstreamer
- [oss-security] 20170202 Re: Multiple memory access issues in gstreamer
- 96001
- 96001
- RHSA-2017:2060
- RHSA-2017:2060
- https://bugzilla.gnome.org/show_bug.cgi?id=777525
- https://bugzilla.gnome.org/show_bug.cgi?id=777525
- https://gstreamer.freedesktop.org/releases/1.10/#1.10.3
- https://gstreamer.freedesktop.org/releases/1.10/#1.10.3
- [debian-lts-announce] 20200228 [SECURITY] [DLA 2126-1] gst-plugins-base0.10 security update
- [debian-lts-announce] 20200228 [SECURITY] [DLA 2126-1] gst-plugins-base0.10 security update
- GLSA-201705-10
- GLSA-201705-10
Modified: 2024-11-21
CVE-2019-9928
GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.
- openSUSE-SU-2019:1639
- openSUSE-SU-2019:1638
- openSUSE-SU-2020:0678
- https://gstreamer.freedesktop.org/security/
- https://gstreamer.freedesktop.org/security/sa-2019-0001.html
- [debian-lts-announce] 20190428 [SECURITY] [DLA 1769-1] gst-plugins-base0.10 security update
- [debian-lts-announce] 20190428 [SECURITY] [DLA 1770-1] gst-plugins-base1.0 security update
- 20190429 [SECURITY] [DSA 4437-1] gst-plugins-base1.0 security update
- GLSA-202003-33
- USN-3958-1
- DSA-4437
- openSUSE-SU-2019:1639
- DSA-4437
- USN-3958-1
- GLSA-202003-33
- 20190429 [SECURITY] [DSA 4437-1] gst-plugins-base1.0 security update
- [debian-lts-announce] 20190428 [SECURITY] [DLA 1770-1] gst-plugins-base1.0 security update
- [debian-lts-announce] 20190428 [SECURITY] [DLA 1769-1] gst-plugins-base0.10 security update
- https://gstreamer.freedesktop.org/security/sa-2019-0001.html
- https://gstreamer.freedesktop.org/security/
- openSUSE-SU-2020:0678
- openSUSE-SU-2019:1638