Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Mageia: 2021-0187 Moderate: GStreamer Memory Access Threats

mageia
Calendar Grey April 15, 2021
Dist Mageia Esm H88
Revised gstreamer1.0 packages address various security vulnerabilities in Mageia related to memory management and heap integrity.
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files (SA-2021-0002)

Summary

GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files (SA-2021-0002). GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files (SA-2021-0003).

References

- https://bugs.mageia.org/show_bug.cgi?id=28685

-

-

-

-

-

Topics%20covered

Topics Covered

security advisory moderate heap corruption memory access memory issue GStreamer stack corruption gstreamer malformed files Mageia Malicious attack

Resolution

SRPMS

- 7/core/gstreamer1.0-libav-1.16.0-1.1.mga7

- 7/core/gstreamer1.0-plugins-good-1.16.0-1.1.mga7

- 7/core/gstreamer1.0-plugins-ugly-1.16.0-1.1.mga7

- 7/tainted/gstreamer1.0-plugins-ugly-1.16.0-1.1.mga7.tainted

- 8/tainted/gstreamer1.0-plugins-ugly-1.18.3-1.1.mga8.tainted

- 8/core/gstreamer1.0-libav-1.18.3-1.1.mga8

- 8/core/gstreamer1.0-plugins-good-1.18.3-1.2.mga8

- 8/core/gstreamer1.0-plugins-ugly-1.18.3-1.1.mga8

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 15 Apr 2021
URL: https://advisories.mageia.org/MGASA-2021-0187.html
Type: security

Topics%20covered

Topics Covered

security advisory moderate heap corruption memory access memory issue GStreamer stack corruption gstreamer malformed files Mageia Malicious attack

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here