[SECURITY] [DLA 2528-1] gst-plugins-bad1.0 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 2528-1] gst-plugins-bad1.0 security update
From: Utkarsh Gupta <utkarsh@debian.org>
Date: Tue, 19 Jan 2021 03:17:48 +0530
Message-id: <[🔎] CAPP0f97RV=1pP5Q2O9eet0joj_36ER9serYgsep+shn-0KS0qA@mail.gmail.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2528-1              debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Utkarsh Gupta
January 19, 2021                            https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : gst-plugins-bad1.0
Version        : 1.10.4-1+deb9u1
CVE ID         : not yet available

Andrew Wesie discovered a buffer overflow in the H264 support of the
GStreamer multimedia framework, which could potentially result in the
execution of arbitrary code.

For Debian 9 stretch, this problem has been fixed in version
1.10.4-1+deb9u1.

We recommend that you upgrade your gst-plugins-bad1.0 packages.

For the detailed security status of gst-plugins-bad1.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gst-plugins-bad1.0

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=q/Gd
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2527-1] snapd security update
Next by Date: [SECURITY] [DLA 2529-1] mutt security update
Previous by thread: [SECURITY] [DLA 2527-1] snapd security update
Next by thread: [SECURITY] [DLA 2529-1] mutt security update
Index(es):
- Date
- Thread