ALSA-2025:8201

[ALSA-2025:8201] Important: gstreamer1-plugins-bad-free security update

Type:

security

Severity:

important

Release date:

2025-05-27

Description:

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer.  

Security Fix(es):  

  * GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-3887)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	gstreamer1-plugins-bad-free-devel-1.16.1-5.el8_10.aarch64.rpm	2cf51038b2b49dbc36c4741607d0d92e7b7d40531242001f2c21e106d3480727
aarch64	gstreamer1-plugins-bad-free-1.16.1-5.el8_10.aarch64.rpm	57c4c08c3303d60f0670783fb68be15702cd6c22613f06aa5bfae3ca3df3de41
i686	gstreamer1-plugins-bad-free-1.16.1-5.el8_10.i686.rpm	8213dca3d6b294e09fd6e68ed7e11d784e1edf448e450562f056829a9dfef6a8
i686	gstreamer1-plugins-bad-free-devel-1.16.1-5.el8_10.i686.rpm	c23156d6928f92b66f349aee87b63cb8b04085c52263a1211a59d6b41b774fd7
ppc64le	gstreamer1-plugins-bad-free-1.16.1-5.el8_10.ppc64le.rpm	c9d3efddf5d00a7e0c62a4dcfb4f47257b779fc48b858286f8fe6b49a4802ac3
ppc64le	gstreamer1-plugins-bad-free-devel-1.16.1-5.el8_10.ppc64le.rpm	dd4887b5ef9143d58ebc54a75152346eb2511c15fede934441902bcba105da78
s390x	gstreamer1-plugins-bad-free-1.16.1-5.el8_10.s390x.rpm	13a5d8f922c6b5f57d75b208505f3c9224241fd719bf06b636d7a81a075e75c6
s390x	gstreamer1-plugins-bad-free-devel-1.16.1-5.el8_10.s390x.rpm	efcf12528263ce8810aa100ad3ea5e97f8c5ac1ef096f5fc15698f00a29d2eb7
x86_64	gstreamer1-plugins-bad-free-1.16.1-5.el8_10.x86_64.rpm	3c6fca5b035963763502932785fbaaa9e74cd572b8a8c385855443348087078b
x86_64	gstreamer1-plugins-bad-free-devel-1.16.1-5.el8_10.x86_64.rpm	b2bba72f73f2550384af618ddfe4f3cf85ce881a5824374e3f12eba31b05e9b6

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.