Users login

Create an account »

JOIN XATRIX

Users login

Home » Security Advisories» Debian » gst-plugins-bad1.0 security update

gst-plugins-bad1.0 security update

  • Vendor: Debian
  • Vendor ID: DSA 3717-1
  • Date: November 17, 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3717-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
November 17, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : gst-plugins-bad1.0 / gst-plugins-bad0.10
CVE ID : not yet available

Chris Evans discovered that the GStreamer plugin to decode VMware screen
capture files allowed the execution of arbitrary code.

For the stable distribution (jessie), this problem has been fixed in
version 1.4.4-2.1+deb8u1 of gst-plugins-bad1.0 and version
0.10.23-7.4+deb8u2 of gst-plugins-bad0.10.

For the unstable distribution (sid), this problem has been fixed in
version 1.10.1-1 of gst-plugins-bad1.0.

We recommend that you upgrade your gst-plugins-bad1.0 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
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=VvCC
-----END PGP SIGNATURE-----

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »