Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 620
Alerts This Week
Warning Icon 1 620

Debian Bullseye DSA-5204-1 Critical: Gstreamer Plugin Security Exploits

debian
Calendar Grey August 9, 2022
Debian Logo
A series of security flaws in Gstreamer extensions may lead to denial of service or unauthorized code execution on Debian platforms.
Adam Doupe discovered multiple vulnerabilities in the Gstreamer plugins to demux Mastroska and AVI files which could result in denial of service or the execution of arbitrary code

Summary

Adam Doupe discovered multiple vulnerabilities in the Gstreamer plugins
to demux Mastroska and AVI files which could result in denial of service
or the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 1.18.4-2+deb11u1.

We recommend that you upgrade your gst-plugins-good1.0 packages.

For the detailed security status of gst-plugins-good1.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/gst-plugins-good1.0

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: gst-plugins-good1.0
CVE ID: CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.