OESA-2021-1237
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1237
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2021-1237.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2021-1237
- Upstream
- Published
- 2021-06-26T11:02:59Z
- Modified
- 2025-08-12T05:08:55.464187Z
- Summary
- gstreamer-plugins-base security update
- Details
-
GStreamer is a pipeline-based multimedia framework that links together a wide variety of media processing systems to complete complex workflows, based on graphs of filters which operate on media data. The formats and processes can be changed in plugins since its plugin-based architecture. This package contains a set of well-maintained base plug-ins and wrapper scripts for the command-line tools for the base plugins.
Security Fix(es):
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.(CVE-2021-3522)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:20.03-LTS-SP1 / gstreamer-plugins-base
Package
- Name
- gstreamer-plugins-base
- Purl
- pkg:rpm/openEuler/gstreamer-plugins-base&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.10.36-22.oe1
Ecosystem specific
{
"aarch64": [
"gstreamer-plugins-base-debuginfo-0.10.36-22.oe1.aarch64.rpm",
"gstreamer-plugins-base-devel-0.10.36-22.oe1.aarch64.rpm",
"gstreamer-plugins-base-debugsource-0.10.36-22.oe1.aarch64.rpm",
"gstreamer-plugins-base-0.10.36-22.oe1.aarch64.rpm"
],
"src": [
"gstreamer-plugins-base-0.10.36-22.oe1.src.rpm"
],
"noarch": [
"gstreamer-plugins-base-help-0.10.36-22.oe1.noarch.rpm"
],
"x86_64": [
"gstreamer-plugins-base-debuginfo-0.10.36-22.oe1.x86_64.rpm",
"gstreamer-plugins-base-devel-0.10.36-22.oe1.x86_64.rpm",
"gstreamer-plugins-base-0.10.36-22.oe1.x86_64.rpm",
"gstreamer-plugins-base-debugsource-0.10.36-22.oe1.x86_64.rpm"
]
}