Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

SUSE: 2019:14076-1 Important: gstreamer-0_10-plugins-base Patch Details

suse
Calendar Grey June 11, 2019
Dist Suse Esm H88
SUSE Security Update for gstreamer-0_10-plugins-base addresses significant vulnerabilities. Discover the necessary steps to update promptly.
An update that fixes three vulnerabilities is now available

Summary

This update for gstreamer-0_10-plugins-base fixes the following issues: Security issues fixed: - CVE-2017-5837: Fixed a floating point exception in gst_riff_create_audio_caps (bsc#1024076). - CVE-2017-5844: Fixed a floating point exception in gst_riff_create_audio_caps (bsc#1024079). - CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser (bsc#1133375). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-gstreamer-0_10-plugins-base-14076=1 - SUSE Linux Enterprise Point of Sale 11-SP3:

References

#1024076 #1024079 #1133375

Cross- CVE-2017-5837 CVE-2017-5844 CVE-2019-9928

Affected Products:

SUSE Linux Enterprise Server 11-SP4-LTSS

SUSE Linux Enterprise Point of Sale 11-SP3

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2017-5837.html

https://www.suse.com/security/cve/CVE-2017-5844.html

https://www.suse.com/security/cve/CVE-2019-9928.html

https://bugzilla.suse.com/1024076

https://bugzilla.suse.com/1024079

https://bugzilla.suse.com/1133375

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:14076-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.