Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Ubuntu 20.10: USN-4928-1 Moderate: GStreamer Code Execution Issue

ubuntu
Calendar Grey April 28, 2021
Dist Ubuntu Esm H88
GStreamer Excellent Modules encountered several vulnerabilities. Prioritize system upgrades to reduce threats and enhance safety.
Several security issues were fixed in GStreamer Plugins Good.

Summary

Several security issues were fixed in GStreamer Plugins Good.

Software Description:

- gst-plugins-good1.0: GStreamer plugins

Details:

It was discovered that GStreamer Good Plugins incorrectly handled certain files.

An attacker could possibly use this issue to cause access sensitive information

or cause a crash. (CVE-2021-3497)

It was discovered that GStreamer Good Plugins incorrectly handled certain files.

An attacker could possibly use this issue to execute arbitrary code or cause

a crash. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu

20.10. (CVE-2021-3498)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.10:
  gstreamer1.0-plugins-good       1.18.0-1ubuntu1.1

Ubuntu 20.04 LTS:
  gstreamer1.0-plugins-good       1.16.2-1ubuntu2.1

Ubuntu 18.04 LTS:
  gstreamer1.0-plugins-good       1.14.5-0ubuntu1~18.04.2

Ubuntu 16.04 LTS:
  gstreamer1.0-plugins-good       1.8.3-1ubuntu0.5

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4928-1

CVE-2021-3497, CVE-2021-3498

Severity
important
Lowest
Low
Medium
High
Critical

April 28, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here