Описание
Security update for gstreamer-0_10-plugins-bad
gstreamer-0_10-plugins-bad was updated to fix a security issue, a buffer overflow in mp4 parsing (bnc#927559 CVE-2015-0797).
Security Issues:
* CVE-2015-0797
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0797>
Список пакетов
SUSE Linux Enterprise Desktop 11 SP3
gstreamer-0_10-plugins-bad-0.10.22-7.11.1
gstreamer-0_10-plugins-bad-lang-0.10.22-7.11.1
libgstbasecamerabinsrc-0_10-0-0.10.22-7.11.1
libgstbasecamerabinsrc-0_10-0-32bit-0.10.22-7.11.1
libgstbasevideo-0_10-0-0.10.22-7.11.1
libgstbasevideo-0_10-0-32bit-0.10.22-7.11.1
libgstphotography-0_10-0-0.10.22-7.11.1
libgstphotography-0_10-0-32bit-0.10.22-7.11.1
libgstsignalprocessor-0_10-0-0.10.22-7.11.1
libgstsignalprocessor-0_10-0-32bit-0.10.22-7.11.1
libgstvdp-0_10-0-0.10.22-7.11.1
libgstvdp-0_10-0-32bit-0.10.22-7.11.1
Ссылки
- Link for SUSE-SU-2015:0921-1
- E-Mail link for SUSE-SU-2015:0921-1
- SUSE Security Ratings
- SUSE Bug 927559
- SUSE CVE CVE-2015-0797 page
Описание
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbitrary code via crafted H.264 video data in an m4v file.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:gstreamer-0_10-plugins-bad-0.10.22-7.11.1
SUSE Linux Enterprise Desktop 11 SP3:gstreamer-0_10-plugins-bad-lang-0.10.22-7.11.1
SUSE Linux Enterprise Desktop 11 SP3:libgstbasecamerabinsrc-0_10-0-0.10.22-7.11.1
SUSE Linux Enterprise Desktop 11 SP3:libgstbasecamerabinsrc-0_10-0-32bit-0.10.22-7.11.1
Ссылки
- CVE-2015-0797
- SUSE Bug 927559
- SUSE Bug 930622