Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Ubuntu 24.04 LTS USN-6798-1 Moderate: GStreamer Plugin Crash Risk

ubuntu
Calendar Grey May 29, 2024
Dist Ubuntu Esm H88
GStreamer Base Plugins on Ubuntu may let attackers execute code or crash systems via crafted files. Update is advised.
GStreamer Base Plugins could be made to crash or run programs as your login if it opened a specially crafted file.

Summary

GStreamer Base Plugins could be made to crash or run programs as your login if it

opened a specially crafted file.

Software Description:

- gst-plugins-base1.0: GStreamer plugins

Details:

It was discovered that GStreamer Base Plugins incorrectly handled certain

EXIF metadata. An attacker could possibly use this issue to execute arbitrary

code or cause a crash.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
  gstreamer1.0-plugins-base       1.24.2-1ubuntu0.1

Ubuntu 23.10
  gstreamer1.0-plugins-base       1.22.6-1ubuntu0.1

Ubuntu 22.04 LTS
  gstreamer1.0-plugins-base       1.20.1-1ubuntu0.2

Ubuntu 20.04 LTS
  gstreamer1.0-plugins-base       1.16.3-0ubuntu1.3

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6798-1

CVE-2024-4453

Ubuntu Security Notice USN-6798-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here