[ALSA-2026:37130] Important: gstreamer1-plugins-bad-free security update
Type:
security
Severity:
important
Release date:
2026-07-09
Description:
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fix(es): * gstreamer1-plugins-bad-free: GStreamer: Heap buffer overflow via crafted VNC server rectangle in librfb (CVE-2026-52720) * gstreamer1-plugins-bad-free: GStreamer: Signed integer overflow in VMnc decoder cursor payload handling (CVE-2026-52722) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 gstreamer1-plugins-bad-free-1.16.1-8.el8_10.aarch64.rpm 7a9992fee227c503e15a74444cabc82d9a02ad88ca155adc6e9b86372b51cb68
aarch64 gstreamer1-plugins-bad-free-devel-1.16.1-8.el8_10.aarch64.rpm 883cbb6878ddc5446b1e04f258c64f2aaea55dd746dc2920e1b3afadca70a101
i686 gstreamer1-plugins-bad-free-devel-1.16.1-8.el8_10.i686.rpm 73ace8c7dd8d192eaacf9166a779255cc5c548d9f8aa1a0e47dcd179d6d81e82
i686 gstreamer1-plugins-bad-free-1.16.1-8.el8_10.i686.rpm bdb03890482911cfe3565d74eadc9291fe05532088d824edce171892669ce985
ppc64le gstreamer1-plugins-bad-free-devel-1.16.1-8.el8_10.ppc64le.rpm 68a3db6a46a63f7deeaa25b789aa4c673f7c08e52a3abde5c69655b2f371356b
ppc64le gstreamer1-plugins-bad-free-1.16.1-8.el8_10.ppc64le.rpm ea7871c30fd424d0f7590490128804260c5e7771b113de3f5cad55ca40982717
s390x gstreamer1-plugins-bad-free-devel-1.16.1-8.el8_10.s390x.rpm 6b82fae7b05caaaebfedba9152ef0fd1d9cae28e447cc1071b52bfef9cc52063
s390x gstreamer1-plugins-bad-free-1.16.1-8.el8_10.s390x.rpm d4feecb401776e35cbb1641c451ff9a29a2066f798b09967e6ad53c72246bffa
x86_64 gstreamer1-plugins-bad-free-1.16.1-8.el8_10.x86_64.rpm baa7e0ce35ba680f9a6b89c1ab2f51464d35f7694e30bcf2670501245dee3c99
x86_64 gstreamer1-plugins-bad-free-devel-1.16.1-8.el8_10.x86_64.rpm f30da0457827edcd8c1caf4813e749fc47c6ae8fcd5994405c9b45c23f2d0369
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.