SUSE: 2021:0456-1 Critical: Gstreamer Buffer Overflow Concerns

suse

January 19, 2017

An update that fixes 6 vulnerabilities is now available

Summary

This update for gstreamer-0_10-plugins-good fixes the following issues: - CVE-2016-9634: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012102) - CVE-2016-9635: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012103) - CVE-2016-9636: Prevent maliciously crafted flic files from causing invalid memory writes (bsc#1012104) - CVE-2016-9807: Prevent the reading of invalid memory in flx_decode_chunks, leading to DoS (bsc#1013655) - CVE-2016-9808: Prevent maliciously crafted flic files from causing invalid memory accesses (bsc#1013653) - CVE-2016-9810: Invalid files can be used to extraneous unreferences, leading to invalid memory access and DoS (bsc#1013663) Patch Instructions: To install this SUSE Security Update use YaST online_update.

Topics Covered

security advisory DoS important system update memory access SUSE gstreamer

References

#1012102 #1012103 #1012104 #1013653 #1013655

#1013663

Cross- CVE-2016-9634 CVE-2016-9635 CVE-2016-9636

CVE-2016-9807 CVE-2016-9808 CVE-2016-9810

Affected Products:

SUSE Linux Enterprise Workstation Extension 12-SP2

SUSE Linux Enterprise Desktop 12-SP2

https://www.suse.com/security/cve/CVE-2016-9634.html

https://www.suse.com/security/cve/CVE-2016-9635.html

https://www.suse.com/security/cve/CVE-2016-9636.html

https://www.suse.com/security/cve/CVE-2016-9807.html

https://www.suse.com/security/cve/CVE-2016-9808.html

https://www.suse.com/security/cve/CVE-2016-9810.html

https://bugzilla.suse.com/1012102

https://bugzilla.suse.com/1012103

https://bugzilla.suse.com/1012104

https://bugzilla.suse.com/1013653

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2017:0210-1

Rating: important

Topics Covered

security advisory DoS important system update memory access SUSE gstreamer

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2021:0456-1 Critical: Gstreamer Buffer Overflow Concerns

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2021:0456-1 Critical: Gstreamer Buffer Overflow Concerns

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!