Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisorymoderateinput validation

SUSE 2024:3397-1 Moderate Update for libmfx Security Released

* bsc#1219494 * bsc#1226892 * bsc#1226897 * bsc#1226898 * bsc#1226899 . # Security update for libmfx Announcement ID: SUSE-SU-2024:3397-1 Rating: moderate References: * bsc#1219494 * bsc#1226892 * bsc#1226897 * bsc#1226898 * bsc#1226899 * bsc#1226900 * bsc#1226901 * jsc#PED-10024 Cross-References: * CVE-2023-22656 * CVE-2023-45221 * CVE-2023-47169 * CVE-2023-47282 * CVE-2023-48368 CVSS scores: * CVE-2023-22656 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N * CVE-2023-45221 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2023-47169 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47282 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2023-48368 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 An update that solves five vulnerabilities, contains one feature and has two security fixes can now be installed. ## Description: This update for libmfx fixes the following issues: * CVE-2023-48368: Fixed an improper input validation. (bsc#1226897) * CVE-2023-45221: Fixed an improper buffer restrictions. (bsc#1226898) * CVE-2023-22656: Fixed an out-of-bounds read. (bsc#1226899) * CVE-2023-47282: Fixed an out-of-bounds write. (bsc#1226900) * CVE-2023-47169: Fixed an improper buffer restrictions. (bsc#1226901) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3397=1 ## Package List: * openSUSE Leap 15.4 (x86_64) * libmfx-debugsource-21.3.4-150400.3.5.1 * libmfx1-debuginfo-21.3.4-150400.3.5.1 * libmfx1-21.3.4-150400.3.5.1 * libmfx-21.3.4-150400.3.5.1 ## References: * https://www.suse.com/security/cve/CVE-2023-22656.html * https://www.suse.com/security/cve/CVE-2023-45221.html *https://www.suse.com/security/cve/CVE-2023-47169.html * https://www.suse.com/security/cve/CVE-2023-47282.html * https://www.suse.com/security/cve/CVE-2023-48368.html * https://bugzilla.suse.com/show_bug.cgi?id=1219494 * https://bugzilla.suse.com/show_bug.cgi?id=1226892 * https://bugzilla.suse.com/show_bug.cgi?id=1226897 * https://bugzilla.suse.com/show_bug.cgi?id=1226898 * https://bugzilla.suse.com/show_bug.cgi?id=1226899 * https://bugzilla.suse.com/show_bug.cgi?id=1226900 * https://bugzilla.suse.com/show_bug.cgi?id=1226901 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-10024&page_caps=&user_role= . This Red Hat patch fixes multiple vulnerabilities in the networking stack, improving overall system security and addressing significant performance issues for administrators.. libmfx Update, Security Advisory, SUSE Patch, OpenSUSE Improvement. . Severity: Important. LinuxSecurity.com Team

Sep 23, 2024 •Important SuSE

security advisoryupdateimportant

SUSE: 2024:3295-1 Important: Gstreamer-Plugins-Bad Buffer Restrictions

* bsc#1218534 * bsc#1219494 * bsc#1223263 * bsc#1226892 * bsc#1226897 . # Security update for gstreamer-plugins-bad Announcement ID: SUSE-SU-2024:3295-1 Rating: important References: * bsc#1218534 * bsc#1219494 * bsc#1223263 * bsc#1226892 * bsc#1226897 * bsc#1226898 * bsc#1226899 * bsc#1226900 * bsc#1226901 * jsc#PED-10024 Cross-References: * CVE-2023-22656 * CVE-2023-45221 * CVE-2023-47169 * CVE-2023-47282 * CVE-2023-48368 * CVE-2023-50186 CVSS scores: * CVE-2023-22656 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N * CVE-2023-45221 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2023-47169 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47282 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2023-48368 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H * CVE-2023-50186 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves six vulnerabilities, contains one feature and has three security fixes can now be installed. ## Description: This update for gstreamer-plugins-bad fixes the following issues: * Dropped support for libmfx to fix the following CVEs: * libmfx: improper input validation (CVE-2023-48368, bsc#1226897) * libmfx: improper buffer restrictions (CVE-2023-45221, bsc#1226898) * libmfx: out-of-bounds read (CVE-2023-22656, bsc#1226899) * libmfx: out-of-bounds write (CVE-2023-47282,bsc#1226900) * libmfx: improper buffer restrictions (CVE-2023-47169, bsc#1226901) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3295=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-3295=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3295=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3295=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3295=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3295=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3295=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3295=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3295=1 ## Package List: * SUSE Manager Proxy 4.3 (x86_64) * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 *gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstTranscoder-1_0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * typelib-1_0-GstVulkanWayland-1_0-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstVulkan-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 *typelib-1_0-GstVulkanXCB-1_0-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgsttranscoder-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * gstreamer-transcoder-devel-1.20.1-150400.3.23.2 * gstreamer-transcoder-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsttranscoder-1_0-0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-transcoder-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * openSUSE Leap 15.4 (x86_64) * libgstbadaudio-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-32bit-1.20.1-150400.3.23.2 *libgstsctp-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-32bit-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-32bit-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-32bit-1.20.1-150400.3.23.2 * libgstva-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-32bit-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-32bit-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-32bit-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstva-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-32bit-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-32bit-1.20.1-150400.3.23.2 *libgstvulkan-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-32bit-debuginfo-1.20.1-150400.3.23.2 * openSUSE Leap 15.4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 * openSUSE Leap 15.4 (aarch64_ilp32) * libgstmpegts-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-64bit-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-64bit-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-64bit-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstva-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstplay-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-64bit-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-64bit-1.20.1-150400.3.23.2 *libgstphotography-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-64bit-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-64bit-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-64bit-debuginfo-1.20.1-150400.3.23.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 *typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 *libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 *libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 *libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 *libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libgstcodecs-1_0-0-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstva-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-devel-1.20.1-150400.3.23.2 * libgstplay-1_0-0-debuginfo-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debugsource-1.20.1-150400.3.23.2 * typelib-1_0-GstMpegts-1_0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlay-1_0-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-debuginfo-1.20.1-150400.3.23.2 *gstreamer-plugins-bad-chromaprint-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-1.20.1-150400.3.23.2 * libgstsctp-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplay-1_0-0-1.20.1-150400.3.23.2 * libgstmpegts-1_0-0-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstPlayer-1_0-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-debuginfo-1.20.1-150400.3.23.2 * libgstinsertbin-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstphotography-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstBadAudio-1_0-1.20.1-150400.3.23.2 * libgstvulkan-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstplayer-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwebrtc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstWebRTC-1_0-1.20.1-150400.3.23.2 * gstreamer-plugins-bad-chromaprint-1.20.1-150400.3.23.2 * libgstbadaudio-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstwayland-1_0-0-1.20.1-150400.3.23.2 * libgstva-1_0-0-1.20.1-150400.3.23.2 * libgstcodecs-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-debuginfo-1.20.1-150400.3.23.2 * libgstadaptivedemux-1_0-0-1.20.1-150400.3.23.2 * libgstisoff-1_0-0-debuginfo-1.20.1-150400.3.23.2 * typelib-1_0-GstInsertBin-1_0-1.20.1-150400.3.23.2 * libgsturidownloader-1_0-0-1.20.1-150400.3.23.2 * libgstcodecparsers-1_0-0-1.20.1-150400.3.23.2 * typelib-1_0-GstCodecs-1_0-1.20.1-150400.3.23.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * gstreamer-plugins-bad-lang-1.20.1-150400.3.23.2 ## References: *https://www.suse.com/security/cve/CVE-2023-22656.html * https://www.suse.com/security/cve/CVE-2023-45221.html * https://www.suse.com/security/cve/CVE-2023-47169.html * https://www.suse.com/security/cve/CVE-2023-47282.html * https://www.suse.com/security/cve/CVE-2023-48368.html * https://www.suse.com/security/cve/CVE-2023-50186.html * https://bugzilla.suse.com/show_bug.cgi?id=1218534 * https://bugzilla.suse.com/show_bug.cgi?id=1219494 * https://bugzilla.suse.com/show_bug.cgi?id=1223263 * https://bugzilla.suse.com/show_bug.cgi?id=1226892 * https://bugzilla.suse.com/show_bug.cgi?id=1226897 * https://bugzilla.suse.com/show_bug.cgi?id=1226898 * https://bugzilla.suse.com/show_bug.cgi?id=1226899 * https://bugzilla.suse.com/show_bug.cgi?id=1226900 * https://bugzilla.suse.com/show_bug.cgi?id=1226901 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-10024&page_caps=&user_role= . Critical patches released for gstreamer-plugins-bad resolving various security flaws in SUSE environments. Update immediately!. gstreamer plugins,SUSE Linux security,security updates,buffer restrictions. . Severity: Important. LinuxSecurity.com Team

Sep 18, 2024 •Important SuSE

Banner 2 1028x280 1708121730 1 1771599631

security advisorysecurity updateimportant

SUSE: 2024:3198-1 Important: Gstreamer-Plugins-Bad Security Fix

* bsc#1219494 * bsc#1226892 * bsc#1226897 * bsc#1226898 * bsc#1226899 . # Security update for gstreamer-plugins-bad Announcement ID: SUSE-SU-2024:3198-1 Rating: important References: * bsc#1219494 * bsc#1226892 * bsc#1226897 * bsc#1226898 * bsc#1226899 * bsc#1226900 * bsc#1226901 * jsc#PED-10024 Cross-References: * CVE-2023-22656 * CVE-2023-45221 * CVE-2023-47169 * CVE-2023-47282 * CVE-2023-48368 CVSS scores: * CVE-2023-22656 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N * CVE-2023-45221 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2023-47169 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47282 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2023-48368 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves five vulnerabilities, contains one feature and has two security fixes can now be installed. ## Description: This update for gstreamer-plugins-bad fixes the following issues: * Dropped support for libmfx to fix the following CVEs: * libmfx: improper input validation (CVE-2023-48368, bsc#1226897) * libmfx: improper buffer restrictions (CVE-2023-45221, bsc#1226898) * libmfx: out-of-bounds read (CVE-2023-22656, bsc#1226899) * libmfx: out-of-bounds write (CVE-2023-47282, bsc#1226900) * libmfx: improper buffer restrictions (CVE-2023-47169, bsc#1226901) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3198=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3198=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3198=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * typelib-1_0-GstMpegts-1_0-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150200.4.22.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debugsource-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-1.16.3-150200.4.22.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150200.4.22.1 *gstreamer-plugins-bad-devel-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbadaudio-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-1.16.3-150200.4.22.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150200.4.22.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * typelib-1_0-GstMpegts-1_0-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150200.4.22.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debugsource-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-1.16.3-150200.4.22.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-1.16.3-150200.4.22.1 *gstreamer-plugins-bad-chromaprint-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-devel-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbadaudio-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-1.16.3-150200.4.22.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150200.4.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * typelib-1_0-GstMpegts-1_0-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150200.4.22.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debugsource-1.16.3-150200.4.22.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-1.16.3-150200.4.22.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-1.16.3-150200.4.22.1 * libgstisoff-1_0-0-1.16.3-150200.4.22.1 *libgstbadaudio-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstplayer-1_0-0-1.16.3-150200.4.22.1 * libgstcodecparsers-1_0-0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150200.4.22.1 * libgstadaptivedemux-1_0-0-1.16.3-150200.4.22.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-devel-1.16.3-150200.4.22.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150200.4.22.1 * libgsturidownloader-1_0-0-1.16.3-150200.4.22.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstbadaudio-1_0-0-1.16.3-150200.4.22.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150200.4.22.1 * libgstsctp-1_0-0-1.16.3-150200.4.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150200.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-22656.html * https://www.suse.com/security/cve/CVE-2023-45221.html * https://www.suse.com/security/cve/CVE-2023-47169.html * https://www.suse.com/security/cve/CVE-2023-47282.html * https://www.suse.com/security/cve/CVE-2023-48368.html * https://bugzilla.suse.com/show_bug.cgi?id=1219494 * https://bugzilla.suse.com/show_bug.cgi?id=1226892 * https://bugzilla.suse.com/show_bug.cgi?id=1226897 * https://bugzilla.suse.com/show_bug.cgi?id=1226898 * https://bugzilla.suse.com/show_bug.cgi?id=1226899 * https://bugzilla.suse.com/show_bug.cgi?id=1226900 * https://bugzilla.suse.com/show_bug.cgi?id=1226901 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-10024&page_caps=&user_role= . Revisions for gstreamer-plugins-bad address critical challenges through numerous enhancements recognized by various sources.. Gstreamer Plugins Bad Update,SUSE Security Advisory,Important Security Patch. . Severity: Important. LinuxSecurity.com Team

Sep 10, 2024 •Important SuSE

Stay Secure with the Latest Linux Advisories

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

SUSE 2024:3397-1 Moderate Update for libmfx Security Released

SUSE: 2024:3295-1 Important: Gstreamer-Plugins-Bad Buffer Restrictions

SUSE: 2024:3198-1 Important: Gstreamer-Plugins-Bad Security Fix

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!