Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
89
security advisoryfedoracriticalFedora 43 mingw-gstreamer1-plugins-bad Remote Exec Advisory 2026-e6d8e9fd49
Update to gstreamer-1.26.11.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e6d8e9fd49 2026-04-05 00:52:10.725721+00:00 -------------------------------------------------------------------------------- Name : mingw-gstreamer1-plugins-bad-free Product : Fedora 43 Version : 1.26.11 Release : 1.fc43 URL : http://gstreamer.freedesktop.org/ Summary : Cross compiled GStreamer1 plug-ins "bad" Description : GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality. -------------------------------------------------------------------------------- Update Information: Update to gstreamer-1.26.11. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 27 2026 Sandro Mani - 1.26.11-1 - Update to 1.26.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2447936 - CVE-2026-2920 mingw-gstreamer1: GStreamer: Arbitrary code execution via ASF file processing [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2447936 [ 2 ] Bug #2448013 - CVE-2026-3084 mingw-gstreamer1: GStreamer: Remote Code Execution via integer underflow in H.266 Codec Parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448013 [ 3 ] Bug #2448019 - CVE-2026-2922 mingw-gstreamer1: GStreamer: Remote Code Execution via out-of-bounds write in RealMedia Demuxer [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448019 [ 4 ] Bug #2448020 - CVE-2026-2921 mingw-gstreamer1: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448020 [ 5 ] Bug #2448021 - CVE-2026-2923 mingw-gstreamer1: GStreamer: Remote Code Execution viaout-of-bounds write in DVB Subtitles handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448021 [ 6 ] Bug #2448022 - CVE-2026-3085 mingw-gstreamer1: GStreamer: Remote Code Execution via Heap-based Buffer Overflow in rtpqdm2depay [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448022 [ 7 ] Bug #2448029 - CVE-2026-3081 mingw-gstreamer1: GStreamer: Arbitrary code execution via H.266 codec parsing stack-based buffer overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448029 [ 8 ] Bug #2448030 - CVE-2026-3083 mingw-gstreamer1: GStreamer: Remote Code Execution via Out-Of-Bounds Write in rtpqdm2depay [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448030 [ 9 ] Bug #2448032 - CVE-2026-3086 mingw-gstreamer1: GStreamer: Remote Code Execution via Out-Of-Bounds Write in H.266 Codec Parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448032 [ 10 ] Bug #2448038 - CVE-2026-3082 mingw-gstreamer1: GStreamer: Remote Code Execution via heap-based buffer overflow in JPEG parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2448038 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e6d8e9fd49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 05, 2026
•Critical
Fedora
172
security advisorydenial of serviceUbuntuUbuntu 25.04: GStreamer Good Plugins Important Denial of Service USN-7717-1
Several security issues were fixed in GStreamer Good Plugins.. ========================================================================== Ubuntu Security Notice USN-7717-1 August 26, 2025 gst-plugins-good1.0 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in GStreamer Good Plugins. Software Description: - gst-plugins-good1.0: GStreamer plugins Details: Shaun Mirani discovered that GStreamer Good Plugins incorrectly handled certain malformed media files. An attacker could use these issues to cause GStreamer Good Plugins to crash, resulting in a denial of service, or possibly disclose sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 gstreamer1.0-gtk3 1.26.0-1ubuntu2.1 gstreamer1.0-plugins-good 1.26.0-1ubuntu2.1 gstreamer1.0-pulseaudio 1.26.0-1ubuntu2.1 gstreamer1.0-qt5 1.26.0-1ubuntu2.1 gstreamer1.0-qt6 1.26.0-1ubuntu2.1 libgstreamer-plugins-good1.0-0 1.26.0-1ubuntu2.1 Ubuntu 24.04 LTS gstreamer1.0-gtk3 1.24.2-1ubuntu1.2 gstreamer1.0-plugins-good 1.24.2-1ubuntu1.2 gstreamer1.0-pulseaudio 1.24.2-1ubuntu1.2 gstreamer1.0-qt5 1.24.2-1ubuntu1.2 gstreamer1.0-qt6 1.24.2-1ubuntu1.2 libgstreamer-plugins-good1.0-0 1.24.2-1ubuntu1.2 Ubuntu 22.04 LTS gstreamer1.0-gtk3 1.20.3-0ubuntu1.4 gstreamer1.0-plugins-good 1.20.3-0ubuntu1.4 gstreamer1.0-pulseaudio 1.20.3-0ubuntu1.4 gstreamer1.0-qt5 1.20.3-0ubuntu1.4 libgstreamer-plugins-good1.0-0 1.20.3-0ubuntu1.4 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7717-1 CVE-2025-47183,CVE-2025-47219 Package Information: https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.26.0-1ubuntu2.1 https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.24.2-1ubuntu1.2 https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.20.3-0ubuntu1.4 . Address various security vulnerabilities affecting GStreamer Good Plugins on Ubuntu. Comprehensive update guidelines are provided for several versions.. GStreamer Good Plugins, Ubuntu security update, denial of service, plugin vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Aug 26, 2025
•Important
Ubuntu
89
security advisoryfedoraupdateFedora 41 mingw-gstreamer1-plugins-bad-free Critical Update 2025-dd97126e3a
Update to 1.26.3.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-dd97126e3a 2025-08-19 04:44:05.202924+00:00 -------------------------------------------------------------------------------- Name : mingw-gstreamer1-plugins-bad-free Product : Fedora 41 Version : 1.26.3 Release : 4.fc41 URL : http://gstreamer.freedesktop.org/ Summary : Cross compiled GStreamer1 plug-ins "bad" Description : GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality. -------------------------------------------------------------------------------- Update Information: Update to 1.26.3. -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 10 2025 Sandro Mani - 1.26.3-4 - Rebuild (imath) * Wed Jul 30 2025 Marc-Andr Lureau - 1.26.3-3 - Add d3d12 plugin * Thu Jul 24 2025 Fedora Release Engineering - 1.26.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jun 29 2025 Sandro Mani - 1.26.3-1 - Update to 1.26.3 * Sat May 31 2025 Sandro Mani - 1.26.2-1 - Update to 1.26.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2387232 - CVE-2025-47183 CVE-2025-47219 mingw-gstreamer1-plugins-good: various flaws [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2387232 [ 2 ] Bug #2387235 - CVE-2025-47806 CVE-2025-47807 CVE-2025-47808 mingw-gstreamer1-plugins-base: various flaws [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2387235 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-dd97126e3a' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Fedora 41 enhances mingw-gstreamer1-plugins-bad-free to version 1.26.3 addressing significant vulnerabilities. Please adhere to the upgrade instructions.. Fedora 41, Mingw GStreamer Update, GStreamer Plugins, Critical Security Update, Fedora Advisory. . Severity: Critical. LinuxSecurity.com Team
Aug 19, 2025
•Critical
Fedora
89
security advisoryfedoraupdateFedora 41: mingw-gstreamer1-plugins-base Important Update 2025-dd97126e3a
Update to 1.26.3.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-dd97126e3a 2025-08-19 04:44:05.202924+00:00 -------------------------------------------------------------------------------- Name : mingw-gstreamer1-plugins-base Product : Fedora 41 Version : 1.26.3 Release : 1.fc41 URL : http://gstreamer.freedesktop.org/ Summary : Cross compiled GStreamer1 media framework base plug-ins Description : GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types or processing capabilities can be added simply by installing new plug-ins. This package contains a set of well-maintained base plug-ins. -------------------------------------------------------------------------------- Update Information: Update to 1.26.3. -------------------------------------------------------------------------------- ChangeLog: * Sun Jun 29 2025 Sandro Mani - 1.26.3-1 - Update to 1.26.3 * Sat May 31 2025 Sandro Mani - 1.26.2-1 - Update to 1.26.2 * Sat Apr 26 2025 Sandro Mani - 1.26.1-1 - Update to 1.26.1 * Sun Mar 16 2025 Sandro Mani - 1.26.0-1 - Update to 1.26.0 * Fri Jan 17 2025 Fedora Release Engineering - 1.25.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Jan 15 2025 Sandro Mani - 1.25.1-1 - Update to 1.25.1 * Sun Jan 12 2025 Sandro Mani - 1.24.11-1 - Update to 1.24.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2387232 - CVE-2025-47183 CVE-2025-47219 mingw-gstreamer1-plugins-good: various flaws [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2387232 [ 2 ] Bug #2387235 - CVE-2025-47806 CVE-2025-47807 CVE-2025-47808mingw-gstreamer1-plugins-base: various flaws [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2387235 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-dd97126e3a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Aug 19, 2025
•Important
Fedora
199
security advisorysecurity issuepluginsCentOS: 2024:0013 Important Gstreamer1 Plugins Bad Free Security Advisory
Upstream details at : https://access.redhat.com/errata/RHSA-2024:0013. CentOS Errata and Security Advisory 2024:0013 Important Upstream details at : https://access.redhat.com/errata/RHSA-2024:0013 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 4e09aa7b08c80287291584ba0426ddf0d69699ff7e4f0bc6cc8e1a788e10bc57 gstreamer1-plugins-bad-free-1.10.4-4.el7_9.i686.rpm b6fa4027fc4b1885bba1e19874919c93e8cbaa34816975d67e07e866d7a53bf3 gstreamer1-plugins-bad-free-1.10.4-4.el7_9.x86_64.rpm 8819df992dd160364ba0aee29998326c7fce6c403594c9abe3dc7e8c293bea83 gstreamer1-plugins-bad-free-devel-1.10.4-4.el7_9.i686.rpm 0b299d62c2e3249e8aa1132f170b5b2eb81a8441f5fcb1b29f9970da5b40d33d gstreamer1-plugins-bad-free-devel-1.10.4-4.el7_9.x86_64.rpm 99fafc8a49fe4f04b587c0c5dfb8876f9377969f4f143426ab749dc0f84a48a8 gstreamer1-plugins-bad-free-gtk-1.10.4-4.el7_9.i686.rpm 2aa040acfde2b250770d5a5742e1a2a67ac343654200b1286fcf39302661446c gstreamer1-plugins-bad-free-gtk-1.10.4-4.el7_9.x86_64.rpm Source: ebb52d5a7ad880ee1c0b06460a4996483515871f3df481889aa922c9139036a4 gstreamer1-plugins-bad-free-1.10.4-4.el7_9.src.rpm -- Johnny Hughes CentOS Project { https://www.centos.org/ } irc: hughesjr, #
Feb 05, 2024
•Important
CentOS
87
security advisorydenial of servicecode executionDebian: DSA-5445-1 Critical: GStreamer Plugin Denial Of Service
Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5445-1
Jul 02, 2023
•Critical
Debian
89
security advisoryfedoraupdateFedora 32: FEDORA-2021-b5e897a2e5 Critical: Nagios URL Injection
Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-b5e897a2e5 2021-03-07 13:52:38.179269 --------------------------------------------------------------------------------Name : nagios Product : Fedora 32 Version : 4.4.6 Release : 3.fc32 URL : https://www.nagios.org/projects/nagios-core/ Summary : Host/service/network monitoring program Description : Nagios is a program that will monitor hosts and services on your network. It has the ability to send email or page alerts when a problem arises and when a problem is resolved. Nagios is written in C and is designed to run under Linux (and some other *NIX variants) as a background process, intermittently running checks on various services that you specify. The actual service checks are performed by separate "plugin" programs which return the status of the checks to Nagios. The plugins are available at https://github.com/nagios-plugins/nagios-plugins This package provides the core program, web interface, and documentation files for Nagios. Development files are built as a separate package. --------------------------------------------------------------------------------Update Information: Fix for CVE-2020-13977 BZ1849087 Require plugins needed for localhost monitoring (#1932297) Update to 4.4.6 --------------------------------------------------------------------------------ChangeLog: * Sat Feb 27 2021 Guido Aulisi - 4.4.6-3 - Require plugins needed for localhost monitoring (#1932297) * Tue Feb 23 2021 Guido Aulisi - 4.4.6-2 - Fix systemd unit file permissions #1676334 * Sat Feb 20 2021 Guido Aulisi - 4.4.6-1 - Update to 4.4.6 - Fix for CVE-2020-13977 #BZ1849087 - Some spec cleanup --------------------------------------------------------------------------------References: [ 1 ] Bug #1829114 - nagios-4.4.6 isavailable https://bugzilla.redhat.com/show_bug.cgi?id=1829114 [ 2 ] Bug #1849087 - CVE-2020-13977 nagios: URL injection (post-authentication) vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1849087 [ 3 ] Bug #1932297 - Nagios server rpm missing some nagios-plugins-* dependency https://bugzilla.redhat.com/show_bug.cgi?id=1932297 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-b5e897a2e5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Mar 07, 2021
•Critical
Fedora
89
security advisoryfedora coreupdateFedora Core 5: FEDORA-2006-346 Critical KDE Addons Update
update to KDE 3.5.2. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2006-346 2006-04-18 ---------------------------------------------------------------------Product : Fedora Core 5 Name : kdeaddons Version : 3.5.2 Release : 0.1.fc5 Summary : K Desktop Environment - Plugins Description : Plugins for some KDE applications: kdeaddons extends the functionality of Konqueror (web browser and file manager), noatun (media player) and Kate (text editor), Kicker, knewsticker. ---------------------------------------------------------------------Update Information: update to KDE 3.5.2 ---------------------------------------------------------------------* Thu Apr 6 2006 Than Ngo 3.5.2-0.1.fc5 - update to 3.5.2 ---------------------------------------------------------------------This update can be downloaded from: 9374a70b68f99a5ad11da60d18b8e6d442eef8b6 SRPMS/kdeaddons-3.5.2-0.1.fc5.src.rpm d86f30c7bf1e5dd5bf3e6967ae67fa4f3a99ca9c ppc/kdeaddons-3.5.2-0.1.fc5.ppc.rpm ae0cdc9fe93dbbfb307e76ea6bd19172e1e21c94 ppc/kdeaddons-atlantikdesigner-3.5.2-0.1.fc5.ppc.rpm 617454c8c92a0bc847688c9c0d0be3622ed2a0e1 ppc/debug/kdeaddons-debuginfo-3.5.2-0.1.fc5.ppc.rpm a446ddd7c960da3bd32499745e1d7a3940cc2b3a x86_64/kdeaddons-3.5.2-0.1.fc5.x86_64.rpm bd71b016d35dbd9a00d31b8314facf9d3b03f1ce x86_64/kdeaddons-atlantikdesigner-3.5.2-0.1.fc5.x86_64.rpm 31d358e6e9ea20ce40f0ae8d8d08478847ecad96 x86_64/debug/kdeaddons-debuginfo-3.5.2-0.1.fc5.x86_64.rpm d151fe3c3ad915fa37aa726e4dd8103d42ae9396 i386/kdeaddons-3.5.2-0.1.fc5.i386.rpm fd0d6203f0f3e66fd22d6e9f4945b4754a2fb8d7 i386/kdeaddons-atlantikdesigner-3.5.2-0.1.fc5.i386.rpm 4a4c008f399a7ee85ef0420274cdba9f3ca69dbb i386/debug/kdeaddons-debuginfo-3.5.2-0.1.fc5.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Softwarewith yum,' available at . ----------------------------------------------------------------------- fedora-announce-list mailing list
Apr 18, 2006
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!