ELSA-2016-2974

Опубликовано: 21 дек. 2016

Источник: oracle-oval

Платформа: Oracle Linux 6

Описание

ELSA-2016-2974: gstreamer-plugins-bad-free security update (IMPORTANT)

[0.10.19-5]

vmncdec: Sanity-check width/height before using it Resolves: rhbz#1400820

[0.10.19-4]

Remove insecure NSF decoder Resolves: rhbz#1400820

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

gstreamer-plugins-bad-free

0.10.19-5.el6_8

gstreamer-plugins-bad-free-devel

0.10.19-5.el6_8

gstreamer-plugins-bad-free-devel-docs

0.10.19-5.el6_8

gstreamer-plugins-bad-free-extras

0.10.19-5.el6_8

Oracle Linux i686

gstreamer-plugins-bad-free

0.10.19-5.el6_8

gstreamer-plugins-bad-free-devel

0.10.19-5.el6_8

gstreamer-plugins-bad-free-devel-docs

0.10.19-5.el6_8

gstreamer-plugins-bad-free-extras

0.10.19-5.el6_8

Связанные CVE

CVE-2016-9447

CVE-2016-9445

Ссылки на источники

Связанные уязвимости

openSUSE-SU-2017:0075-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-0_10-plugins-bad

SUSE-SU-2017:0028-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-0_10-plugins-bad

SUSE-SU-2017:0027-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-0_10-plugins-bad

ELSA-2017-0018

oracle-oval

больше 8 лет назад

ELSA-2017-0018: gstreamer-plugins-bad-free security update (MODERATE)

CVE-2016-9447

CVSS3: 7.8

ubuntu

больше 8 лет назад

The ROM mappings in the NSF decoder in gstreamer 0.10.x allow remote attackers to cause a denial of service (out-of-bounds read or write) and possibly execute arbitrary code via a crafted NSF music file.