openSUSE-SU-2019:1638-1

Опубликовано: 27 июн. 2019

Источник: suse-cvrf

Описание

Security update for gstreamer-0_10-plugins-base

This update for gstreamer-0_10-plugins-base fixes the following issues:

Security issue fixed:

CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser (bsc#1133375).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

gstreamer-0_10-plugin-gnomevfs-0.10.36-18.3.1

gstreamer-0_10-plugins-base-0.10.36-18.3.1

gstreamer-0_10-plugins-base-32bit-0.10.36-18.3.1

gstreamer-0_10-plugins-base-devel-0.10.36-18.3.1

gstreamer-0_10-plugins-base-doc-0.10.36-18.3.1

gstreamer-0_10-plugins-base-lang-0.10.36-18.3.1

libgstapp-0_10-0-0.10.36-18.3.1

libgstapp-0_10-0-32bit-0.10.36-18.3.1

libgstinterfaces-0_10-0-0.10.36-18.3.1

libgstinterfaces-0_10-0-32bit-0.10.36-18.3.1

typelib-1_0-GstApp-0_10-0.10.36-18.3.1

typelib-1_0-GstInterfaces-0_10-0.10.36-18.3.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00082.html
E-Mail link for openSUSE-SU-2019:1638-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.

Затронутые продукты

openSUSE Leap 42.3:gstreamer-0_10-plugin-gnomevfs-0.10.36-18.3.1

openSUSE Leap 42.3:gstreamer-0_10-plugins-base-0.10.36-18.3.1

openSUSE Leap 42.3:gstreamer-0_10-plugins-base-32bit-0.10.36-18.3.1

openSUSE Leap 42.3:gstreamer-0_10-plugins-base-devel-0.10.36-18.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-9928.html
CVE-2019-9928
https://bugzilla.suse.com/1133375
SUSE Bug 1133375

openSUSE-SU-2019:1638-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2019-9928

Описание

Затронутые продукты

Ссылки