Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

Ubuntu 18.04 & 16.04: GStreamer Critical Security Flaws USN-7807-1

ubuntu
Calendar Grey October 7, 2025
Dist Ubuntu Esm H88
A security advisory detailing multiple critical issues in GStreamer Base Plugins for Ubuntu. Immediate updates are recommended.
Several security issues were fixed in GStreamer Base Plugins.

Summary

Several security issues were fixed in GStreamer Base Plugins.

Software Description:

- gst-plugins-base1.0: GStreamer plugins

Details:

Michael Randrianantenaina discovered that GStreamer Base Plugins did not

correctly handle certain integer operations. An attacker could possibly

use this issue to execute arbitrary code. (CVE-2023-37327, CVE-2024-4453)

Michael Randrianantenaina discovered that GStreamer Base Plugins did not

correctly handle certain memory operations. An attacker could possibly

use this issue to execute arbitrary code. This issue only affected

Ubuntu 18.04 LTS. (CVE-2023-37328)

Antonio Morales discovered that GStreamer Base Plugins did not correctly

handle certain memory operations. An attacker could possibly use this

issue to execute arbitrary code. (CVE-2024-47538)

Antonio Morales discovered that GStreamer Base Plugins did not correctly

handle parsing certain inputs, which could lead to an out-of-bounds access

vulnerability. An attacker could possibly use this...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
  libgstreamer-plugins-base1.0-0  1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro
  libgstreamer-plugins-base1.0-dev  1.14.5-0ubuntu1~18.04.3+esm1
                                  Available with Ubuntu Pro

Ubuntu 16.04 LTS
  libgstreamer-plugins-base1.0-0  1.8.3-1ubuntu0.3+esm2
                                  Available with Ubuntu Pro
  libgstreamer-plugins-base1.0-dev  1.8.3-1ubuntu0.3+esm2
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7807-1

CVE-2023-37327, CVE-2023-37328, CVE-2024-4453, CVE-2024-47538,

CVE-2024-47541, CVE-2024-47542, CVE-2024-47600, CVE-2024-47607,

CVE-2024-47615, CVE-2024-47835

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7807-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here