(RHSA-2009:0352) Moderate: gstreamer-plugins-base security update

2009-04-0600:00:00

access.redhat.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

82.9%

JSON

GStreamer is a streaming media framework based on graphs of filters which
operate on media data. GStreamer Base Plug-ins is a collection of
well-maintained base plug-ins.

An integer overflow flaw which caused a heap-based buffer overflow was
discovered in the Vorbis comment tags reader. An attacker could create a
carefully-crafted Vorbis file that would cause an application using
GStreamer to crash or, potentially, execute arbitrary code if opened by a
victim. (CVE-2009-0586)

All users of gstreamer-plugins-base are advised to upgrade to these updated
packages, which contain a backported patch to correct this issue. After
installing this update, all applications using GStreamer (such as Totem or
Rhythmbox) must be restarted for the changes to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5i386gstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.i386.rpm
RedHat5ia64gstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ia64.rpm
RedHat5ppcgstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ppc.rpm
RedHat5x86_64gstreamer-plugins-base-devel< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.x86_64.rpm
RedHat5s390gstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.s390.rpm
RedHat5s390xgstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.s390x.rpm
RedHat5ppcgstreamer-plugins-base-devel< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.ppc.rpm
RedHat5i386gstreamer-plugins-base-devel< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.i386.rpm
RedHat5ppc64gstreamer-plugins-base-devel< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.ppc64.rpm
RedHat5ppc64gstreamer-plugins-base< 0.10.20-3.0.1.el5_3gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ppc64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	5	i386	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.i386.rpm
RedHat	5	ia64	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ia64.rpm
RedHat	5	ppc	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ppc.rpm
RedHat	5	x86_64	gstreamer-plugins-base-devel	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.x86_64.rpm
RedHat	5	s390	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.s390.rpm
RedHat	5	s390x	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.s390x.rpm
RedHat	5	ppc	gstreamer-plugins-base-devel	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.ppc.rpm
RedHat	5	i386	gstreamer-plugins-base-devel	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.i386.rpm
RedHat	5	ppc64	gstreamer-plugins-base-devel	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-devel-0.10.20-3.0.1.el5_3.ppc64.rpm
RedHat	5	ppc64	gstreamer-plugins-base	< 0.10.20-3.0.1.el5_3	gstreamer-plugins-base-0.10.20-3.0.1.el5_3.ppc64.rpm