Lucene search

K
oraclelinuxOracleLinuxELSA-2024-0013
HistoryJan 02, 2024 - 12:00 a.m.

gstreamer1-plugins-bad-free security update

2024-01-0200:00:00
linux.oracle.com
21
gstreamer1-plugins-bad-free
security update
patch
cve-2023-44446
disable gtk-doc
resolves rhel-16793
mxf demuxer use-after-free
build
unix

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.0%

[1.10.4-4]

  • Patch CVE-2023-44446: MXF demuxer use-after-free
  • Disable gtk-doc to fix build
  • Resolves: RHEL-16793

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.0%