MGASA-2022-0322 - Updated gstreamer1.0-plugins-good packages fix security vulnerability
Publication date: 10 Sep 2022
URL: https://advisories.mageia.org/MGASA-2022-0322.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2022-1920,
CVE-2022-1921,
CVE-2022-1922,
CVE-2022-1923,
CVE-2022-1924,
CVE-2022-1925,
CVE-2022-2122
It was discovered that GStreamer Good Plugins incorrectly handled certain
files. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2022-1920, CVE-2022-1921)
It was discovered that GStreamer Good Plugins incorrectly handled certain
files. An attacker could possibly use this issue to cause a denial of
service or execute arbitrary code. (CVE-2022-1922, CVE-2022-1923,
CVE-2022-1924, CVE-2022-1925, CVE-2022-2122)
References:
- https://bugs.mageia.org/show_bug.cgi?id=30728
- https://ubuntu.com/security/notices/USN-5555-1
- https://gstreamer.freedesktop.org/security/sa-2022-0001.html
- https://gstreamer.freedesktop.org/security/sa-2022-0002.html
- https://gstreamer.freedesktop.org/security/sa-2022-0003.html
- https://gstreamer.freedesktop.org/security/sa-2022-0004.html
- https://www.debian.org/security/2022/dsa-5204
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1920
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1921
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1922
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1923
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1924
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1925
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2122
SRPMS:
- 8/core/gstreamer1.0-plugins-good-1.18.5-1.1.mga8
Mageia 2022-0322: gstreamer1.0-plugins-good security update
It was discovered that GStreamer Good Plugins incorrectly handled certain files
Summary
It was discovered that GStreamer Good Plugins incorrectly handled certain
files. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2022-1920, CVE-2022-1921)
It was discovered that GStreamer Good Plugins incorrectly handled certain
files. An attacker could possibly use this issue to cause a denial of
service or execute arbitrary code. (CVE-2022-1922, CVE-2022-1923,
CVE-2022-1924, CVE-2022-1925, CVE-2022-2122)
References
- https://bugs.mageia.org/show_bug.cgi?id=30728
- https://ubuntu.com/security/notices/USN-5555-1
- https://gstreamer.freedesktop.org/security/sa-2022-0001.html
- https://gstreamer.freedesktop.org/security/sa-2022-0002.html
- https://gstreamer.freedesktop.org/security/sa-2022-0003.html
- https://gstreamer.freedesktop.org/security/sa-2022-0004.html
- https://www.debian.org/security/2022/dsa-5204
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1920
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1921
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1922
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1923
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1924
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1925
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2122
Resolution
MGASA-2022-0322 - Updated gstreamer1.0-plugins-good packages fix security vulnerability
SRPMS
- 8/core/gstreamer1.0-plugins-good-1.18.5-1.1.mga8
Severity
Publication date: 10 Sep 2022
URL: https://advisories.mageia.org/MGASA-2022-0322.html
Type: security
CVE: CVE-2022-1920,
CVE-2022-1921,
CVE-2022-1922,
CVE-2022-1923,
CVE-2022-1924,
CVE-2022-1925,
CVE-2022-2122
News
HOWTOs
Features
History of Malware on Linux and What's Being Done to Stop It
A Complete Guide to Security Automation & Reporting Using Open Source Tools
How to Check if Your Linux System is Infected with a Virus
Security Considerations for Azure Linux & Windows Subsystem for Linux Users
Admins Receive Automated Linux Patch Management & Improved Security with ManageEngine Endpoint Central
About Us
Powered By
