1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5476-1] gst-plugins-ugly1.0 security update

    From Moritz Muehlenhoff@21:1/5 to All on Sat Aug 12 21:10:01 2023
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5476-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff August 12, 2023 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : gst-plugins-ugly1.0
    CVE ID : not yet available

    Multiple vulnerabilities were discovered in the RealMedia demuxers for
    the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file
    is opened.

    For the oldstable distribution (bullseye), this problem has been fixed
    in version 1.18.4-2+deb11u1.

    For the stable distribution (bookworm), this problem has been fixed in
    version 1.22.0-2+deb12u1.

    We recommend that you upgrade your gst-plugins-ugly1.0 packages.

    For the detailed security status of gst-plugins-ugly1.0 please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/gst-plugins-ugly1.0

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmTX2D0ACgkQEMKTtsN8 TjbwIg//RuPTY1bmSNq9PRwNGDaunfEvlVTVsl+BCQmCkdyOOjyrc+87nDqdl2vD 4v4QMYO1mNgf+uBI5cGi6qMTgwLqz5OP1m4ayIZmuLh70jx8T9igt7tr98O86zd5 T5nBK++juQoZ0+1RG9YR8hATrtrZwETYWVHlSro0JMmcfvxw1gn/yT2gqEaT6N7k 0rcUPWXh7H9H2ef7m6saewIQ0Qyvrnz9PULGnX8bJ0q1H7WWpsnCpBIXQFKpc6Gl VKovdTkLnxHOqTygNkCv1PYFktv8TbtMhMzvrbsB1lFh1oM5DF6K7KtpyY8uHJsa fMdKBY0nmtnyOxfMsmSJ8B/pG/hC+/xpvkiapfFsL2wNQqXbyK/PaCip0kgcWrAe jxJb+yGXIk5PeQK+mUuv/gRQOl+SlN6XeB4O/F22iGgOs1x7alhhd8wmnVkmn8iB fNr7thYgX7k1RJju5TqiCSuWg4okbOwyrLMAhlloN/hERx+wu2FNxbTHk9h+cdtM pHMq66Fyd6u8eIhqFyvpcCRaaRhgZKTXOXGB9snvQGYYmKfCd6hOsXzqUwFIT5dG KxbKPOM33W8p3LkzUFXIQqn06v1+O9kRPxca+fTureibTsws7Xy/UKhVBulAuAfC fY9GN2BhtKpBPVdR09upElAAvEU0l/O5Ly36lYc4tdVtsg2PLd8=
    =Bu6f
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)