SUSE SLED12 / SLES12 Security Update : gstreamer-plugins-base (SUSE-SU-2017:1039-1)

This update for gstreamer-plugins-base fixes the following security issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 - A crafted AVI file could have caused a stack overflow leading to DoS bsc1024047,...

SUSE-SU-2017:1039-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following security issues: - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 - A crafted AVI file could have caused a stack overflow leading to DoS bsc1024047,...

SUSE SLED12 / SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2017:1003-1)

This update for gstreamer-010-plugins-base fixes the following security issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 Note that Tenable Network Security has extracted the preceding description block...

SUSE SLED12 / SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2017:1012-1)

This update for gstreamer-010-plugins-base fixes the following issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 Note that Tenable Network Security has extracted the preceding description block directly...

openSUSE Security Update : gstreamer-plugins-base (openSUSE-2017-301)

This update for gstreamer-plugins-base fixes the following security issues : - A crafted AVI file could have caused a floating point exception leading to DoS bsc1024076, CVE-2017-5837, bsc1024079, CVE-2017-5844 - A crafted AVI file could have caused a stack overflow leading to DoS bsc1024047,...

Fedora Update for mingw-gstreamer1-plugins-base FEDORA-2017-a56d78acb8

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 25 : mingw-gstreamer1-plugins-base (2017-a56d78acb8)

Security fix for CVE-2017-5837, CVE-2017-5839, CVE-2017-5842, CVE-2017-5844 - Downgrade to 1.10.3 as it is the latest stable release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

GStreamer gst-plugins-base denial of service vulnerability (CNVD-2017-01449)

GStreamer is a set of frameworks for handling streaming media. A denial of service vulnerability exists in GStreamer gst-plugins-base, which allows remote attackers to cause a denial of service stack overflow and crash via a nested WAVEFORMATEX vector...

GStreamer html_context_handle_element function denial of service vulnerability

GStreamer is an open source multimedia framework. GStreamer has a security vulnerability in the gst-plugins-base/gst/subparse/samiparse.c/htmlcontexthandleelement function, which causes a denial of service for remote attackers...

GStreamer gst-plugins-base denial of service vulnerability

GStreamer is a set of frameworks for handling streaming media. A denial of service vulnerability exists in GStreamer gst-plugins-base, which allows remote attackers to cause a denial of service floating point exception and crash via a crafted video file...

CVE-2017-5837

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted video file...

DEBIAN-CVE-2017-5839

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service stack overflow and crash via vectors involving nested WAVEFORMATEX...

Design/Logic Flaw

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted video file...

CVE-2017-5839

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recursion, which allows remote attackers to cause a denial of service stack overflow and crash via vectors involving nested WAVEFORMATEX...

CVE-2017-5837

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted video file...

UBUNTU-CVE-2017-5842

The htmlcontexthandleelement function in gst/subparse/samiparse.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds write via a crafted SMI file, as demonstrated by OneNoteManager.smi...

[ASA-201702-4] gst-plugins-base-libs: multiple issues

Arch Linux Security Advisory ASA-201702-4 ========================================= Severity: Critical Date : 2017-02-03 CVE-ID : CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 Package : gst-plugins-base-libs Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1...

openSUSE Security Update : gstreamer-0_10-plugins-base (openSUSE-2017-169)

gstreamer-010-plugins-base was updated to fix one issue. This security issue was fixed : - CVE-2016-9811: Out of bounds memory read in windowsicontypefind bsc1013669. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : gstreamer-plugins-base (openSUSE-2017-168)

This update for gstreamer-plugins-base fixes the following issues : - CVE-2016-9811: Malicious file could could cause an invalid read leading to crash bsc1013669 This update was imported from the SUSE:SLE-12-SP2:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

SUSE SLES11 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2017:0289-1)

This update for gstreamer-010-plugins-base fixes the following issue : - CVE-2016-9811: Out of bounds memory read in windowsicontypefind bsc1013669. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...