[ALSA-2024:2287] Moderate: gstreamer1-plugins-bad-free security update
Type:
security
Severity:
moderate
Release date:
2024-05-07
Description:
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fix(es): * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video (CVE-2023-40474) * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio (CVE-2023-40475) * gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite (CVE-2023-40476) * gstreamer-plugins-bad-free: buffer overflow vulnerability (CVE-2023-50186) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.aarch64.rpm 3a6f45baffdc4631125e5128aae6c4a096dfe2ba0a46f4b43d258c7ddc09a4d8
aarch64 gstreamer1-plugins-bad-free-1.22.1-4.el9.aarch64.rpm c3a6b529d34f602f778b6b924bffb43e27c70cfb33002ce8e07ac42bd775c5e3
i686 gstreamer1-plugins-bad-free-1.22.1-4.el9.i686.rpm 701b187919acddf6341bffd5548aa1f770ae1b6379141d24ee95fbac3a9a1ed2
i686 gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.i686.rpm ddc2ba5c5f7a6a4538968ac251b30eaae012c137250bc136fc00310c1ab4a21e
ppc64le gstreamer1-plugins-bad-free-1.22.1-4.el9.ppc64le.rpm 1929fff5ea2cb0d0687544887c8e24dfa99d7ea2dd912aa15d6c526220879213
ppc64le gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.ppc64le.rpm 3c6c67d78d00982965bb261e1b0f474616017c55ab915e05556d23952c7b7ceb
s390x gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.s390x.rpm 0deb5d700b3248b6d5882b346a6f1154483db4a9d19406847c102a4bc76d921b
s390x gstreamer1-plugins-bad-free-1.22.1-4.el9.s390x.rpm 5ad4f98a8d5670f69af34ca6a35a881948abb50b629722afa429175326eb8886
x86_64 gstreamer1-plugins-bad-free-1.22.1-4.el9.x86_64.rpm 8116d74b354bb7eef11ee3956b3c5c3ff9089b4130988445044e3ecfe84c6679
x86_64 gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.x86_64.rpm ed7665908329246f7645369b2f380bcc60f2649c0bd2141747aeef391326a175
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.