ELSA-2017-2060

Опубликовано: 07 авг. 2017

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2017-2060: GStreamer security, bug fix, and enhancement update (MODERATE)

clutter-gst2 [2.0.18-1]

Update to 2.0.18
Remove obsolete patches
Use license macro for COPYING
Resolves: #1386833

gnome-video-effects [0.4.3-1]

Update to 0.4.3
Resolves: #1386968

[0.4.1-5]

Fix URL (rhbz#1380981)

gstreamer-plugins-bad-free [0.10.23-23]

Rebuild with hardened flags Resolves: #1420764

gstreamer-plugins-good [0.10.31-13]

Rebuild with correct hardening flags Resolves: #1420765

gstreamer1 [1.10.4-2]

fix origin
Resolves: #1420650

[1.10.4-1]

Update to 1.10.4
update patches
Resolves: #1420650

gstreamer1-plugins-bad-free [1.10.4-2]

Disable plugins
Fix origin
Resolves: #1429587

[1.10.4-1]

Update to 1.10.4
Remove unbuilt plugins
Resolves: #1429587

gstreamer1-plugins-base [1.10.4-1]

Update to 1.10.4
Resolves: #1428918

[1.4.5-3]

Fix unit test on ppc64
Resolves: #1265905

gstreamer1-plugins-good [1.10.4-2]

Fix origin Resolves: #1429577

[1.10.4-1]

Update to 1.10.4 Resolves: #1429577

orc [0.4.26-1]

Update to 0.4.26
Remove upstreamed patches
Resolves: #1430051

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

clutter-gst2

2.0.18-1.el7

clutter-gst2-devel

2.0.18-1.el7

gnome-video-effects

0.4.3-1.el7

gstreamer-plugins-bad-free

0.10.23-23.el7

gstreamer-plugins-bad-free-devel

0.10.23-23.el7

gstreamer-plugins-bad-free-devel-docs

0.10.23-23.el7

gstreamer-plugins-good

0.10.31-13.el7

gstreamer-plugins-good-devel-docs

0.10.31-13.el7

gstreamer1

1.10.4-2.el7

gstreamer1-devel

1.10.4-2.el7

gstreamer1-devel-docs

1.10.4-2.el7

gstreamer1-plugins-bad-free

1.10.4-2.el7

gstreamer1-plugins-bad-free-devel

1.10.4-2.el7

gstreamer1-plugins-bad-free-gtk

1.10.4-2.el7

gstreamer1-plugins-base

1.10.4-1.el7

gstreamer1-plugins-base-devel

1.10.4-1.el7

gstreamer1-plugins-base-devel-docs

1.10.4-1.el7

gstreamer1-plugins-base-tools

1.10.4-1.el7

gstreamer1-plugins-good

1.10.4-2.el7

orc

0.4.26-1.el7

orc-compiler

0.4.26-1.el7

orc-devel

0.4.26-1.el7

orc-doc

0.4.26-1.el7

Oracle Linux x86_64

clutter-gst2

2.0.18-1.el7

clutter-gst2-devel

2.0.18-1.el7

gnome-video-effects

0.4.3-1.el7

gstreamer-plugins-bad-free

0.10.23-23.el7

gstreamer-plugins-bad-free-devel

0.10.23-23.el7

gstreamer-plugins-bad-free-devel-docs

0.10.23-23.el7

gstreamer-plugins-good

0.10.31-13.el7

gstreamer-plugins-good-devel-docs

0.10.31-13.el7

gstreamer1

1.10.4-2.el7

gstreamer1-devel

1.10.4-2.el7

gstreamer1-devel-docs

1.10.4-2.el7

gstreamer1-plugins-bad-free

1.10.4-2.el7

gstreamer1-plugins-bad-free-devel

1.10.4-2.el7

gstreamer1-plugins-bad-free-gtk

1.10.4-2.el7

gstreamer1-plugins-base

1.10.4-1.el7

gstreamer1-plugins-base-devel

1.10.4-1.el7

gstreamer1-plugins-base-devel-docs

1.10.4-1.el7

gstreamer1-plugins-base-tools

1.10.4-1.el7

gstreamer1-plugins-good

1.10.4-2.el7

orc

0.4.26-1.el7

orc-compiler

0.4.26-1.el7

orc-devel

0.4.26-1.el7

orc-doc

0.4.26-1.el7

Связанные CVE

Ссылки на источники

Связанные уязвимости

SUSE-SU-2017:1004-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-plugins-good

openSUSE-SU-2017:1076-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-plugins-good

openSUSE-SU-2017:1066-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-plugins-good

SUSE-SU-2017:1010-1

suse-cvrf

больше 8 лет назад

Security update for gstreamer-plugins-good

CVE-2016-10199

CVSS3: 7.5

ubuntu

почти 9 лет назад

The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.