[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3633-1] gst-plugins-bad1.0 security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3633-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
October 28, 2023                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : gst-plugins-bad1.0
Version        : 1.14.4-1+deb10u4
CVE ID         : CVE-2023-40474 CVE-2023-40475 CVE-2023-40476


Multiple vulnerabilities were discovered in plugins for the GStreamer
media framework and its codecs and demuxers, which may result in denial
of service or potentially the execution of arbitrary code if a malformed
media file is opened.


For Debian 10 buster, these problems have been fixed in version
1.14.4-1+deb10u4.

We recommend that you upgrade your gst-plugins-bad1.0 packages.

For the detailed security status of gst-plugins-bad1.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gst-plugins-bad1.0

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmU8+bxfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy
MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7
WEdu0xAAxHArQLsjex63/sogLFHnGz7aeayWYMJaQGLq8LXC+oVdb+Csl9+L46Tx
sAZe5wldFDhxdhlSI55wS4sQ56VpuwHPQQhoLbtRHM7jw+eK0sWmYnZwLQmtevNf
AUfcBWevIM2WoRP2fDaoWB2nFlLOB24ixH7SEU4hFYlk8cqx/wmD5yChkDn608FV
bb5q7PvD1kzSC+CP58bF+tireQ6lfW/8QVixgKhBaPXMVd8m8fs+84gZTjxzD2Di
lIgfjMmo5cstdhuijTx41Yc9pLAI+D3DE0VNcht9wzR4Kg9QZXGWkeyn1kteQ/T7
sM9BbRP9Os3AQvBxJLyOnuqWjcnrdkNk5Z+yorJjITJ1EpCm+VOp20BmY25lKHoN
WqLnC/0/hzowBd0NH2aG4xlm6rkovE6aU2M/h7/PGQAEglsOmTUUGcgCmagX79f2
QJJxk87FiuexZ3VqaFqehmMyb3h3zg0t8GwhqRsg/x03kAxF8ZlO0kRszj5hNbfA
8FdjHpm09pOzRpX+6brdbO2yyTR7TFENldO9oSaRzA5363A9KpAR2DztKTJiTK3P
TMiHuj1wTMreCZuOBJ7IQO3cJXXJv+1Ny59RicW99ZyhUbyvhRm4FwRCzgbmeGZP
WJCKu/BtJbWBv6OkMZVSAv5oIWJQB5JHbUD072g8oeZGziNMUJU=
=iLoy
-----END PGP SIGNATURE-----
Reply to: