Описание
Security update for gstreamer-0_10-plugins-base
This update for gstreamer-0_10-plugins-base fixes the following issues:
- A crafted AVI file could have caused a floating point exception leading to DoS (bsc#1024076, CVE-2017-5837, bsc#1024079, CVE-2017-5844)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
gstreamer-0_10-plugins-base-0.10.36-11.6.9
gstreamer-0_10-plugins-base-32bit-0.10.36-11.6.9
gstreamer-0_10-plugins-base-lang-0.10.36-11.6.9
libgstapp-0_10-0-0.10.36-11.6.9
libgstapp-0_10-0-32bit-0.10.36-11.6.9
libgstinterfaces-0_10-0-0.10.36-11.6.9
libgstinterfaces-0_10-0-32bit-0.10.36-11.6.9
SUSE Linux Enterprise Server 12 SP1
gstreamer-0_10-plugins-base-32bit-0.10.36-11.6.9
libgstapp-0_10-0-32bit-0.10.36-11.6.9
libgstinterfaces-0_10-0-32bit-0.10.36-11.6.9
SUSE Linux Enterprise Server for SAP Applications 12 SP1
gstreamer-0_10-plugins-base-32bit-0.10.36-11.6.9
libgstapp-0_10-0-32bit-0.10.36-11.6.9
libgstinterfaces-0_10-0-32bit-0.10.36-11.6.9
SUSE Linux Enterprise Software Development Kit 12 SP1
gstreamer-0_10-plugins-base-devel-0.10.36-11.6.9
typelib-1_0-GstApp-0_10-0.10.36-11.6.9
typelib-1_0-GstInterfaces-0_10-0.10.36-11.6.9
SUSE Linux Enterprise Workstation Extension 12 SP1
gstreamer-0_10-plugins-base-0.10.36-11.6.9
gstreamer-0_10-plugins-base-lang-0.10.36-11.6.9
libgstapp-0_10-0-0.10.36-11.6.9
libgstinterfaces-0_10-0-0.10.36-11.6.9
Ссылки
- Link for SUSE-SU-2017:1012-1
- E-Mail link for SUSE-SU-2017:1012-1
- SUSE Security Ratings
- SUSE Bug 1024076
- SUSE Bug 1024079
- SUSE CVE CVE-2017-5837 page
- SUSE CVE CVE-2017-5844 page
Описание
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted video file.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-32bit-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-lang-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:libgstapp-0_10-0-0.10.36-11.6.9
Ссылки
- CVE-2017-5837
- SUSE Bug 1023259
- SUSE Bug 1024076
- SUSE Bug 1024079
Описание
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (floating point exception and crash) via a crafted ASF file.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-32bit-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:gstreamer-0_10-plugins-base-lang-0.10.36-11.6.9
SUSE Linux Enterprise Desktop 12 SP1:libgstapp-0_10-0-0.10.36-11.6.9
Ссылки
- CVE-2017-5844
- SUSE Bug 1023259
- SUSE Bug 1024079