SUSE-SU-2017:0225-1
- Source
- https://www.suse.com/support/update/announcement/2017/suse-su-20170225-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2017:0225-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2017:0225-1
- Related
- Published
- 2017-01-20T12:26:52Z
- Modified
- 2017-01-20T12:26:52Z
- Summary
- Security update for gstreamer-0_10-plugins-good
- Details
-
gstreamer-0_10-plugins-good was updated to fix six security issues.
These security issues were fixed:
- CVE-2016-9634: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012102)
- CVE-2016-9635: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012103)
- CVE-2016-9636: Prevent maliciously crafted flic files from causing invalid memory writes (bsc#1012104).
- CVE-2016-9807: Prevent the reading of invalid memory in flxdecodechunks, leading to DoS (bsc#1013655)
- CVE-2016-9808: Prevent maliciously crafted flic files from causing invalid memory accesses (bsc#1013653)
- CVE-2016-9810: Invalid files can be used to extraneous unreferences, leading to invalid memory access and DoS (bsc#1013663)
- References
-
- https://www.suse.com/support/update/announcement/2017/suse-su-20170225-1/
- https://bugzilla.suse.com/1012102
- https://bugzilla.suse.com/1012103
- https://bugzilla.suse.com/1012104
- https://bugzilla.suse.com/1013653
- https://bugzilla.suse.com/1013655
- https://bugzilla.suse.com/1013663
- https://www.suse.com/security/cve/CVE-2016-9634
- https://www.suse.com/security/cve/CVE-2016-9635
- https://www.suse.com/security/cve/CVE-2016-9636
- https://www.suse.com/security/cve/CVE-2016-9807
- https://www.suse.com/security/cve/CVE-2016-9808
- https://www.suse.com/security/cve/CVE-2016-9810
Affected packages
SUSE:Linux Enterprise Server 11 SP4 / gstreamer-0_10-plugins-good
Package
- Name
- gstreamer-0_10-plugins-good
- Purl
- pkg:rpm/suse/gstreamer-0_10-plugins-good&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4