[SECURITY] [DSA 5476-1] gst-plugins-ugly1.0 security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5476-1] gst-plugins-ugly1.0 security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Sat, 12 Aug 2023 19:07:13 +0000
Message-id: <[🔎] ZNfYYSc0yu7fcX4j@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5476-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
August 12, 2023                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : gst-plugins-ugly1.0
CVE ID         : not yet available

Multiple vulnerabilities were discovered in the RealMedia demuxers for
the GStreamer media framework, which may result in denial of service or
potentially the execution of arbitrary code if a malformed media file
is opened.

For the oldstable distribution (bullseye), this problem has been fixed
in version 1.18.4-2+deb11u1.

For the stable distribution (bookworm), this problem has been fixed in
version 1.22.0-2+deb12u1.

We recommend that you upgrade your gst-plugins-ugly1.0 packages.

For the detailed security status of gst-plugins-ugly1.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gst-plugins-ugly1.0

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Bu6f
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5475-1] linux security update
Next by Date: [SECURITY] [DSA 5477-1] samba security update
Previous by thread: [SECURITY] [DSA 5475-1] linux security update
Next by thread: [SECURITY] [DSA 5477-1] samba security update
Index(es):
- Date
- Thread