MGASA-2024-0119

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0119.html

Import Source

https://advisories.mageia.org/MGASA-2024-0119.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2024-0119

Related

CVE-2024-0444

Published

2024-04-10T04:03:52Z

Modified

2024-04-10T03:41:47Z

Summary

Updated gstreamer1.0 packages fix vulnerability

Details

Heap-based buffer overflow in the AV1 codec parser when handling certain malformed streams before GStreamer 1.22.9 It is possible for a malicious third party to trigger a crash in the application, and possibly also effect code execution through heap manipulation.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / gstreamer1.0

Package

Name: gstreamer1.0
Purl: pkg:rpm/mageia/gstreamer1.0?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-devtools

Package

Name: gstreamer1.0-devtools
Purl: pkg:rpm/mageia/gstreamer1.0-devtools?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-editing-services

Package

Name: gstreamer1.0-editing-services
Purl: pkg:rpm/mageia/gstreamer1.0-editing-services?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-libav

Package

Name: gstreamer1.0-libav
Purl: pkg:rpm/mageia/gstreamer1.0-libav?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-moodbar

Package

Name: gstreamer1.0-moodbar
Purl: pkg:rpm/mageia/gstreamer1.0-moodbar?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.3.0-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-omx

Package

Name: gstreamer1.0-omx
Purl: pkg:rpm/mageia/gstreamer1.0-omx?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-plugins-bad

Package

Name: gstreamer1.0-plugins-bad
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-bad?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-plugins-base

Package

Name: gstreamer1.0-plugins-base
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-base?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-plugins-good

Package

Name: gstreamer1.0-plugins-good
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-good?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-plugins-ugly

Package

Name: gstreamer1.0-plugins-ugly
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-ugly?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-python

Package

Name: gstreamer1.0-python
Purl: pkg:rpm/mageia/gstreamer1.0-python?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-rtsp-server

Package

Name: gstreamer1.0-rtsp-server
Purl: pkg:rpm/mageia/gstreamer1.0-rtsp-server?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-vaapi

Package

Name: gstreamer1.0-vaapi
Purl: pkg:rpm/mageia/gstreamer1.0-vaapi?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9

Ecosystem specific

{
    "section": "core"
}

Mageia:9 / gstreamer1.0-plugins-bad

Package

Name: gstreamer1.0-plugins-bad
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-bad?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9.tainted

Ecosystem specific

{
    "section": "tainted"
}

Mageia:9 / gstreamer1.0-plugins-ugly

Package

Name: gstreamer1.0-plugins-ugly
Purl: pkg:rpm/mageia/gstreamer1.0-plugins-ugly?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.22.11-1.mga9.tainted

Ecosystem specific

{
    "section": "tainted"
}