[ubuntu/trusty-updates] gst-plugins-base1.0 1.2.4-1~ubuntu2.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Mon Mar 27 17:58:43 UTC 2017
gst-plugins-base1.0 (1.2.4-1~ubuntu2.1) trusty-security; urgency=medium
* SECURITY UPDATE: DoS in windows_icon_typefind
- debian/patches/CVE-2016-9811.patch: add bounds check in
gst/typefind/gsttypefindfunctions.c.
- CVE-2016-9811
* SECURITY UPDATE: DoS in gst_riff_create_audio_caps
- debian/patches/CVE-2017-5837.patch: check for valid channels/rate in
gst-libs/gst/riff/riff-media.c.
- CVE-2017-5837
* SECURITY UPDATE: DoS in gst_riff_create_audio_caps
- debian/patches/CVE-2017-5839.patch: fix infinite recursion in
gst-libs/gst/riff/riff-media.c.
- CVE-2017-5839
* SECURITY UPDATE: DoS in html_context_handle_element
- debian/patches/CVE-2017-5842.patch: check for non-zero length in
gst/subparse/samiparse.c.
- CVE-2017-5842
* SECURITY UPDATE: DoS in gst_riff_create_audio_caps
- debian/patches/CVE-2017-5844.patch: fix divide by zero in
gst-libs/gst/riff/riff-media.c.
- CVE-2017-5844
Date: 2017-03-24 13:42:27.816120+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/gst-plugins-base1.0/1.2.4-1~ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list