FEDORA-2017-4c593cfa4a — security update for mingw-gstreamer1-plugins-good

obsolete

mingw-gstreamer1-plugins-good-1.11.1-1.fc25

FEDORA-2017-4c593cfa4a created by victortoso 6 years ago for Fedora 25

CVE-2016-10199, CVE-2017-5845, CVE-2017-5840, CVE-2017-5841 on update to 1.11.1

Security fix for CVE-2016-10199, CVE-2017-5845, CVE-2017-5840, CVE-2017-5841 - Downgrade to 1.10.3 as it is the latest stable release

This update has been submitted for testing by victortoso.

6 years ago

pwalter commented & provided feedback 6 years ago

karma

Did you mean to put an unstable gstreamer release in F25? It should be 1.10.x in F25.

victortoso commented & provided feedback 6 years ago

Yes, my mistake. I thought both F25 and F26 were 1.11.1 for the non mingw-gstreamer-* packages. I'll update it. Many thanks for noticing this!

This update has been pushed to testing.

6 years ago

This update has obsoleted mingw-gstreamer1-plugins-good-1.10.3-1.fc25, and has inherited its bugs and notes.

6 years ago

This update has been obsoleted.

6 years ago

Please login to add feedback.

Metadata

Type

security

Karma

-1

Signed

Content Type

RPM

Test Gating

None

Builds

mingw-gstreamer1-plugins-good-1.11.1-1.fc25

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

6 years ago

in testing

6 years ago

BZ#1419580 CVE-2016-10199 gstreamer-plugins-good: Out of bounds read in qtdemux_tag_add_str_full

BZ#1419582 CVE-2017-5845 gstreamer-plugins-good: Invalid memory read in gst_avi_demux_parse_ncdt

BZ#1419588 CVE-2017-5840 gstreamer-plugins-good: Out of bounds heap read in qtdemux_parse_samples

BZ#1419589 CVE-2017-5841 gstreamer-plugins-good: Heap out-of-bounds read in gst_avi_demux_parse_ncdt

BZ#1419611 CVE-2016-10199 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 mingw-gstreamer1-plugins-good: various flaws [fedora-all]

mingw-gstreamer1-plugins-good-1.11.1-1.fc25

Automated Test Results

None