gst-plugins-base-libs

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	Multimedia graph framework - base
Version	1.24.1-2 [extra]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-164	1.10.2-1	1.10.3-1	Critical	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2017-5844	AVG-164	Low	Yes	Denial of service	A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.
CVE-2017-5842	AVG-164	Critical	Yes	Arbitrary code execution	An off-by-one write has been found in gstreamer before 1.10.3, in html_context_handle_element.
CVE-2017-5839	AVG-164	Medium	Yes	Denial of service	An endless recursion issue leading to stack overflow has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.
CVE-2017-5837	AVG-164	Low	Yes	Denial of service	A floating point exception issue has been found in gstreamer before 1.10.3, in gst_riff_create_audio_caps.

Advisories

Date	Advisory	Group	Severity	Type
03 Feb 2017	ASA-201702-4	AVG-164	Critical	multiple issues