Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 544
Alerts This Week
Warning Icon 1 544

Fedora 25: Advisory for GStreamer-Plugins-Good FLX Plugin Security Issue

fedora
Calendar Grey December 9, 2016
Scroller Fedora Esm H88
Notice for Fedora 25 regarding the deactivation of the vulnerable FLX plugin due to various CVEs and risks of heap overflow exploits.
Disable insecure FLX plugin (rhbz#1397441)

Summary

GStreamer is a streaming media framework, based on graphs of filters which

operate on media data. Applications using this library can do anything

from real-time sound processing to playing videos, and just about anything

else media-related. Its plugin-based architecture means that new data

types or processing capabilities can be added simply by installing new

plug-ins.

GStreamer Good Plug-ins is a collection of well-supported plug-ins of

good quality and under the LGPL license.

Update Information:

Disable insecure FLX plugin (rhbz#1397441)

Change Log

References


[ 1 ] Bug #1397441 - CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9808 gstreamer-plugins-good: Heap buffer overflow in FLIC decoder https://bugzilla.redhat.com/show_bug.cgi?id=1397441

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade gstreamer-plugins-good' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
important
Lowest
Low
Medium
High
Critical

Name: gstreamer-plugins-good
Product: Fedora 25
Version: 0.10.31
Release: 17.fc25
Summary: GStreamer plug-ins with good code and licensing

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.