Описание
Security update for gstreamer-0_10-plugins-base
gstreamer-0_10-plugins-base was updated to fix one issue.
This security issue was fixed:
- CVE-2016-9811: Out of bounds memory read in windows_icon_typefind (bsc#1013669).
This update was imported from the SUSE:SLE-12:Update update project.
Список пакетов
openSUSE Leap 42.1
gstreamer-0_10-plugin-gnomevfs-0.10.36-14.1
gstreamer-0_10-plugins-base-0.10.36-14.1
gstreamer-0_10-plugins-base-32bit-0.10.36-14.1
gstreamer-0_10-plugins-base-devel-0.10.36-14.1
gstreamer-0_10-plugins-base-doc-0.10.36-14.1
gstreamer-0_10-plugins-base-lang-0.10.36-14.1
libgstapp-0_10-0-0.10.36-14.1
libgstapp-0_10-0-32bit-0.10.36-14.1
libgstinterfaces-0_10-0-0.10.36-14.1
libgstinterfaces-0_10-0-32bit-0.10.36-14.1
typelib-1_0-GstApp-0_10-0.10.36-14.1
typelib-1_0-GstInterfaces-0_10-0.10.36-14.1
Ссылки
- E-Mail link for openSUSE-SU-2017:0325-1
- SUSE Security Ratings
Описание
The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ico file.
Затронутые продукты
openSUSE Leap 42.1:gstreamer-0_10-plugin-gnomevfs-0.10.36-14.1
openSUSE Leap 42.1:gstreamer-0_10-plugins-base-0.10.36-14.1
openSUSE Leap 42.1:gstreamer-0_10-plugins-base-32bit-0.10.36-14.1
openSUSE Leap 42.1:gstreamer-0_10-plugins-base-devel-0.10.36-14.1
Ссылки
- CVE-2016-9811
- SUSE Bug 1013669