Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
202
security advisorysoftware updateremote code executionopenSUSE 15.3: SUSE-SU-2023:4361-1 Important Remote Code Execution Fix
This update for gstreamer-plugins-bad fixes the following issues: CVE-2023-40474: Fixed a remote code execution issue due to improper parsing of H265 encoded video files (bsc#1215793).. # Security update for gstreamer-plugins-bad Announcement ID: SUSE-SU-2023:4361-1 Rating: important References: * bsc#1215793 Cross-References: * CVE-2023-40474 CVSS scores: * CVE-2023-40474 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for gstreamer-plugins-bad fixes the following issues: * CVE-2023-40474: Fixed a remote code execution issue due to improper parsing of H265 encoded video files (bsc#1215793). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2023-4361=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-4361=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-4361=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-4361=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-4361=1 * SUSE Enterprise Storage 7.1 zypper in -t patchSUSE-Storage-7.1-2023-4361=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * gstreamer-plugins-bad-doc-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 *libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * openSUSE Leap 15.3 (x86_64) * libgstplayer-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-32bit-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-32bit-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-32bit-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-32bit-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-32bit-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-32bit-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-32bit-1.16.3-150300.9.9.1 * openSUSE Leap 15.3 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 * openSUSE Leap 15.3 (aarch64_ilp32) *libgstinsertbin-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-64bit-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-64bit-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-64bit-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-64bit-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-64bit-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-64bit-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-64bit-debuginfo-1.16.3-150300.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 x86_64) * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 *libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 *libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS15-SP3 (aarch64 ppc64le s390x x86_64) * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) *gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 *libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * gstreamer-plugins-bad-debugsource-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-devel-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-debuginfo-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstInsertBin-1_0-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgsturidownloader-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstwebrtc-1_0-0-1.16.3-150300.9.9.1 * libgstisoff-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstWebRTC-1_0-1.16.3-150300.9.9.1 * libgstwayland-1_0-0-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-debuginfo-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-1.16.3-150300.9.9.1 * gstreamer-plugins-bad-chromaprint-debuginfo-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-1.16.3-150300.9.9.1 * libgstphotography-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstsctp-1_0-0-debuginfo-1.16.3-150300.9.9.1 * typelib-1_0-GstPlayer-1_0-1.16.3-150300.9.9.1 * libgstplayer-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstadaptivedemux-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstcodecparsers-1_0-0-1.16.3-150300.9.9.1 * libgstbasecamerabinsrc-1_0-0-1.16.3-150300.9.9.1 * libgstbadaudio-1_0-0-debuginfo-1.16.3-150300.9.9.1 * libgstinsertbin-1_0-0-1.16.3-150300.9.9.1 *libgstphotography-1_0-0-1.16.3-150300.9.9.1 * typelib-1_0-GstMpegts-1_0-1.16.3-150300.9.9.1 * libgstmpegts-1_0-0-debuginfo-1.16.3-150300.9.9.1 * SUSE Enterprise Storage 7.1 (noarch) * gstreamer-plugins-bad-lang-1.16.3-150300.9.9.1 ## References: * https://www.suse.com/security/cve/CVE-2023-40474.html * https://bugzilla.suse.com/show_bug.cgi?id=1215793 . A critical patch has been released for gstreamer-plugins-bad to resolve CVE-2023-40474, mitigating potential remote code execution vulnerabilities.. important updates, security advisory, gstreamer-plugins-bad fixes, openSUSE security, remote execution risk. . Severity: Important. LinuxSecurity.com Team
Nov 03, 2023
•Important
OpenSUSE
172
security advisorycode executionaccess issueUbuntu 20.10: USN-4928-1 Moderate: GStreamer Code Execution Issue
Several security issues were fixed in GStreamer Plugins Good.. =========================================================================Ubuntu Security Notice USN-4928-1 April 28, 2021 gst-plugins-good1.0 vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in GStreamer Plugins Good. Software Description: - gst-plugins-good1.0: GStreamer plugins Details: It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to cause access sensitive information or cause a crash. (CVE-2021-3497) It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code or cause a crash. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 20.10. (CVE-2021-3498) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: gstreamer1.0-plugins-good 1.18.0-1ubuntu1.1 Ubuntu 20.04 LTS: gstreamer1.0-plugins-good 1.16.2-1ubuntu2.1 Ubuntu 18.04 LTS: gstreamer1.0-plugins-good 1.14.5-0ubuntu1~18.04.2 Ubuntu 16.04 LTS: gstreamer1.0-plugins-good 1.8.3-1ubuntu0.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4928-1 CVE-2021-3497, CVE-2021-3498 Package Information: https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.18.0-1ubuntu1.1 https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.16.2-1ubuntu2.1 https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.14.5-0ubuntu1~18.04.2 https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.8.3-1ubuntu0.5 . GStreamer Excellent Modules encountered several vulnerabilities. Prioritize system upgrades toreduce threats and enhance safety.. GStreamer Security Advisory, Ubuntu Plugin Fixes, Code Execution Risks. . Severity: Important. LinuxSecurity.com Team
Apr 28, 2021
•Important
Ubuntu
89
security advisorysoftware updateFedoraFedora 27: 2018-70fac3f07e Moderate: Anki Import Security Fix
Update to new upstream release 2.0.50. * fix a security issue in .apkg imports * fix a problem with plugin download * use python send2trash module from system * use correct shebang for python2 * upstream changelog: . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-70fac3f07e 2018-04-25 17:58:40.817219 --------------------------------------------------------------------------------Name : anki Product : Fedora 27 Version : 2.0.50 Release : 1.fc27 URL : https://apps.ankiweb.net/ Summary : Flashcard program for using space repetition learning Description : Anki is a program designed to help you remember facts (such as words and phrases in a foreign language) as easily, quickly and efficiently as possible. Anki is based on a theory called spaced repetition. --------------------------------------------------------------------------------Update Information: Update to new upstream release 2.0.50. * fix a security issue in .apkg imports * fix a problem with plugin download * use python send2trash module from system * use correct shebang for python2 * upstream changelog: --------------------------------------------------------------------------------ChangeLog: * Mon Apr 9 2018 Christian Krause - 2.0.50-1 - Update to new upstream version 2.0.50 (BZ 1436178, BZ 1529540, BZ 1529541) - Use separate send2trash python module instead of the bundled one (BZ 1173410) - Disable internal CA store in favor of global one (BZ 1497504) - Use correct shebang for python2 (BZ 1478302) - Use %autosetup --------------------------------------------------------------------------------References: [ 1 ] Bug #1529540 - anki: Security issue in .apkg imports fixed in 2.0.47 https://bugzilla.redhat.com/show_bug.cgi?id=1529540 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2018-70fac3f07e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 25, 2018
•Important
Fedora
89
security advisoryFedoraapplication updateFedora: Anki 2.0.50 Security Update: Critical Plugin Issues Fixed
Update to new upstream release 2.0.50. * fix a security issue in .apkg imports * fix a problem with plugin download * use python send2trash module from system * use correct shebang for python2 * upstream changelog: . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-50039f6b61 2018-04-17 00:11:16.755305 --------------------------------------------------------------------------------Name : anki Product : Fedora 28 Version : 2.0.50 Release : 1.fc28 URL : https://apps.ankiweb.net/ Summary : Flashcard program for using space repetition learning Description : Anki is a program designed to help you remember facts (such as words and phrases in a foreign language) as easily, quickly and efficiently as possible. Anki is based on a theory called spaced repetition. --------------------------------------------------------------------------------Update Information: Update to new upstream release 2.0.50. * fix a security issue in .apkg imports * fix a problem with plugin download * use python send2trash module from system * use correct shebang for python2 * upstream changelog: --------------------------------------------------------------------------------References: [ 1 ] Bug #1529540 - anki: Security issue in .apkg imports fixed in 2.0.47 https://bugzilla.redhat.com/show_bug.cgi?id=1529540 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade anki' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 17, 2018
•Critical
Fedora
197
security advisorydebiancoding errorDebian 7 Wheezy DLA-1179-1 Critical: Shibboleth-SP2 Plugin Error Fix
Rod Widdowson of Steading System Software LLP discovered a coding error in the "Dynamic" metadata plugin of the Shibboleth Service Provider, causing the plugin to fail configuring itself with the filters provided and omitting whatever checks they are intended to perform. . Hash: SHA512 Package : shibboleth-sp2 Version : 2.4.3+dfsg-5+deb7u2 CVE ID : CVE-2017-16852 Debian Bug : 881857 Rod Widdowson of Steading System Software LLP discovered a coding error in the "Dynamic" metadata plugin of the Shibboleth Service Provider, causing the plugin to fail configuring itself with the filters provided and omitting whatever checks they are intended to perform. For Debian 7 "Wheezy", these problems have been fixed in version 2.4.3+dfsg-5+deb7u2. We recommend that you upgrade your shibboleth-sp2 packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . An important security patch fixes a vulnerability in the Shibboleth Service Provider for Debian. Update to protect your system.. Debian LTS, Shibboleth SP2, Security Update, Plugin Fix, Critical Error. . Severity: Critical. LinuxSecurity.com Team
Nov 18, 2017
•Critical
Debian LTS
98
security advisoryRed Hat Enterprise LinuximportantRed Hat: RHSA-2014:2029-01 Important: Kernel Escalation
Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.9 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2014:2029-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:2029.html Issue date: 2014-12-22 CVE Names: CVE-2014-9322 ==================================================================== 1. Summary: Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.9 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux EUS (v. 5.9 server) - i386, ia64, noarch, ppc, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. * A flaw was found in the way the Linux kernel handled GS segment register base switching when recovering from a #SS (stack segment) fault on an erroneous return to user space. A local, unprivileged user could use this flaw to escalate their privileges on the system. (CVE-2014-9322, Important) Red Hat would like to thank Andy Lutomirski for reporting this issue. All kernel users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your systemhave been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 To install kernel packages manually, use "rpm -ivh [package]". Do not use "rpm -Uvh" as that will remove the running kernel binaries from your system. You may use "rpm -e" to remove old kernels after determining that the new kernel functions properly on your system. 5. Bugs fixed (https://bugzilla.redhat.com/): 1172806 - CVE-2014-9322 kernel: x86: local privesc due to bad_iret and paranoid entry incompatibility 6. Package List: Red Hat Enterprise Linux EUS (v. 5.9server): Source: kernel-2.6.18-348.29.1.el5.src.rpm i386: kernel-2.6.18-348.29.1.el5.i686.rpm kernel-PAE-2.6.18-348.29.1.el5.i686.rpm kernel-PAE-debuginfo-2.6.18-348.29.1.el5.i686.rpm kernel-PAE-devel-2.6.18-348.29.1.el5.i686.rpm kernel-debug-2.6.18-348.29.1.el5.i686.rpm kernel-debug-debuginfo-2.6.18-348.29.1.el5.i686.rpm kernel-debug-devel-2.6.18-348.29.1.el5.i686.rpm kernel-debuginfo-2.6.18-348.29.1.el5.i686.rpm kernel-debuginfo-common-2.6.18-348.29.1.el5.i686.rpm kernel-devel-2.6.18-348.29.1.el5.i686.rpm kernel-headers-2.6.18-348.29.1.el5.i386.rpm kernel-xen-2.6.18-348.29.1.el5.i686.rpm kernel-xen-debuginfo-2.6.18-348.29.1.el5.i686.rpm kernel-xen-devel-2.6.18-348.29.1.el5.i686.rpm ia64: kernel-2.6.18-348.29.1.el5.ia64.rpm kernel-debug-2.6.18-348.29.1.el5.ia64.rpm kernel-debug-debuginfo-2.6.18-348.29.1.el5.ia64.rpm kernel-debug-devel-2.6.18-348.29.1.el5.ia64.rpm kernel-debuginfo-2.6.18-348.29.1.el5.ia64.rpm kernel-debuginfo-common-2.6.18-348.29.1.el5.ia64.rpm kernel-devel-2.6.18-348.29.1.el5.ia64.rpm kernel-headers-2.6.18-348.29.1.el5.ia64.rpm kernel-xen-2.6.18-348.29.1.el5.ia64.rpm kernel-xen-debuginfo-2.6.18-348.29.1.el5.ia64.rpm kernel-xen-devel-2.6.18-348.29.1.el5.ia64.rpm noarch: kernel-doc-2.6.18-348.29.1.el5.noarch.rpm ppc: kernel-2.6.18-348.29.1.el5.ppc64.rpm kernel-debug-2.6.18-348.29.1.el5.ppc64.rpm kernel-debug-debuginfo-2.6.18-348.29.1.el5.ppc64.rpm kernel-debug-devel-2.6.18-348.29.1.el5.ppc64.rpm kernel-debuginfo-2.6.18-348.29.1.el5.ppc64.rpm kernel-debuginfo-common-2.6.18-348.29.1.el5.ppc64.rpm kernel-devel-2.6.18-348.29.1.el5.ppc64.rpm kernel-headers-2.6.18-348.29.1.el5.ppc.rpm kernel-headers-2.6.18-348.29.1.el5.ppc64.rpm kernel-kdump-2.6.18-348.29.1.el5.ppc64.rpm kernel-kdump-debuginfo-2.6.18-348.29.1.el5.ppc64.rpm kernel-kdump-devel-2.6.18-348.29.1.el5.ppc64.rpm s390x: kernel-2.6.18-348.29.1.el5.s390x.rpm kernel-debug-2.6.18-348.29.1.el5.s390x.rpm kernel-debug-debuginfo-2.6.18-348.29.1.el5.s390x.rpm kernel-debug-devel-2.6.18-348.29.1.el5.s390x.rpm kernel-debuginfo-2.6.18-348.29.1.el5.s390x.rpm kernel-debuginfo-common-2.6.18-348.29.1.el5.s390x.rpm kernel-devel-2.6.18-348.29.1.el5.s390x.rpm kernel-headers-2.6.18-348.29.1.el5.s390x.rpm kernel-kdump-2.6.18-348.29.1.el5.s390x.rpm kernel-kdump-debuginfo-2.6.18-348.29.1.el5.s390x.rpm kernel-kdump-devel-2.6.18-348.29.1.el5.s390x.rpm x86_64: kernel-2.6.18-348.29.1.el5.x86_64.rpm kernel-debug-2.6.18-348.29.1.el5.x86_64.rpm kernel-debug-debuginfo-2.6.18-348.29.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-348.29.1.el5.x86_64.rpm kernel-debuginfo-2.6.18-348.29.1.el5.x86_64.rpm kernel-debuginfo-common-2.6.18-348.29.1.el5.x86_64.rpm kernel-devel-2.6.18-348.29.1.el5.x86_64.rpm kernel-headers-2.6.18-348.29.1.el5.x86_64.rpm kernel-xen-2.6.18-348.29.1.el5.x86_64.rpm kernel-xen-debuginfo-2.6.18-348.29.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-348.29.1.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2014-9322 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFUmHNZXlSAg2UNWIIRAuRXAJ4nZYqWCEx9iYL9pvr7hNbyWcsTNACgqkpE gvrjY1IeUy4HAhHjnIaZHGY=6x57 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Dec 22, 2014
•Important
Red Hat
98
security advisorysecurity issueRed HatRed Hat: RHSA-2013:0730-01 Critical: Flash Player Security Update
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Critical: flash-plugin security update Advisory ID: RHSA-2013:0730-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://access.redhat.com/errata/RHSA-2013:0730.html Issue date: 2013-04-10 CVE Names: CVE-2013-1378 CVE-2013-1379 CVE-2013-1380 CVE-2013-2555 ==================================================================== 1. Summary: An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security bulletin APSB13-11, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content.(CVE-2013-1378, CVE-2013-1379, CVE-2013-1380, CVE-2013-2555) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.280. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 920186 - CVE-2013-2555 flash-plugin: Remote attackers able to execute arbitrary code via vectors that leverage an 'overflow' (CanSecWest 2013) 950180 - CVE-2013-1378 CVE-2013-1379 CVE-2013-1380 flash-plugin: multiple code execution flaws (APSB13-11) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: flash-plugin-11.2.202.280-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.280-1.el5.i386.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: flash-plugin-11.2.202.280-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.280-1.el5.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: flash-plugin-11.2.202.280-2.el6.i686.rpm x86_64: flash-plugin-11.2.202.280-2.el6.i686.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: flash-plugin-11.2.202.280-2.el6.i686.rpm x86_64: flash-plugin-11.2.202.280-2.el6.i686.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: flash-plugin-11.2.202.280-2.el6.i686.rpm x86_64: flash-plugin-11.2.202.280-2.el6.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7.References: https://access.redhat.com/security/cve/CVE-2013-1378 https://access.redhat.com/security/cve/CVE-2013-1379 https://access.redhat.com/security/cve/CVE-2013-1380 https://access.redhat.com/security/cve/CVE-2013-2555 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. . Important patch for flash-plugin on Red Hat to address numerous vulnerabilities. Vital for safeguarding the system.. Red Hat Advisory, Flash Player Security, Critical Update. . Severity: Critical. LinuxSecurity.com Team
Apr 10, 2013
•Critical
Red Hat
89
security advisorysecurity issuefedoraFedora: gnome-python2-extras 2.19.1 Update: Moderate Firefox Security Issue
Update to Firefox 3.0.10 fixing one security issue: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Depending packages rebuilt against new Firefox are also included in this update. Additional bugs fixed in other packages: - totem: Fix YouTube plugin following web site changes. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-4083 2009-04-28 00:41:58 -------------------------------------------------------------------------------- Name : gnome-python2-extras Product : Fedora 10 Version : 2.19.1 Release : 30.fc10 URL : https://gnome.pages.gitlab.gnome.org/pygobject/ Summary : The sources for additional. PyGNOME Python extension modules. Description : The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python. -------------------------------------------------------------------------------- Update Information: Update to Firefox 3.0.10 fixing one security issue: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Depending packages rebuilt against new Firefox are also included in this update. Additional bugs fixed in other packages: - totem: Fix YouTube plugin following web site changes -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 27 2009 Christopher Aillon - 2.19.1-30 - Rebuild against newer gecko * Tue Apr 21 2009 Christopher Aillon - 2.19.1-29 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 2.19.1-28 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 2.19.1-27 - Rebuild against newer gecko * Wed Feb 4 2009 Christopher Aillon - 2.19.1-26 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 2.19.1-25 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #497447 -CVE-2009-1313 Firefox crash in nsTextFrame::ClearTextRun() https://bugzilla.redhat.com/show_bug.cgi?id=497447 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnome-python2-extras' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Apr 27, 2009
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!