'[SECURITY] [DSA 4901-1] gst-libav1.0 security update'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       debian-security-announce
Subject:    [SECURITY] [DSA 4901-1] gst-libav1.0 security update
From:       Moritz Muehlenhoff <jmm () debian ! org>
Date:       2021-04-24 17:46:13
Message-ID: 20210424174613.GB11452 () seger ! debian ! org
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4901-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
April 24, 2021                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : gst-libav1.0
CVE ID         : not yet available

Multiple vulnerabilities were discovered in plugins for the GStreamer
media framework, which may result in denial of service or potentially
the execution of arbitrary code if a malformed media file is opened.
      
For the stable distribution (buster), this problem has been fixed in
version 1.15.0.1+git20180723+db823502-2+deb10u1.

We recommend that you upgrade your gst-libav1.0 packages.

For the detailed security status of gst-libav1.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gst-libav1.0

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=cK2V
-----END PGP SIGNATURE-----

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic