Описание
ELSA-2009-0271: gstreamer-plugins-good security update (IMPORTANT)
[0.10.9-1.el5.1]
- Add patch for CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 Related: rhbz #483220
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
gstreamer-plugins-good
0.10.9-1.el5_3.1
gstreamer-plugins-good-devel
0.10.9-1.el5_3.1
Oracle Linux i386
gstreamer-plugins-good
0.10.9-1.el5_3.1
gstreamer-plugins-good-devel
0.10.9-1.el5_3.1
Связанные CVE
Связанные уязвимости
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample (aka stts) atom data in a malformed QuickTime media .mov file.
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample (aka stts) atom data in a malformed QuickTime media .mov file.
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample (aka stts) atom data in a malformed QuickTime media .mov file.
Heap-based buffer overflow in the qtdemux_parse_samples function in gs ...