SUSE-SU-2023:3801-1 -- SLES gstreamer-plugins-base, typelib-1_0-GstSdp-1_0, typelib-1_0-GstAllocators-1_0, libgstapp-1_0-0, typelib-1_0-GstAudio-1_0, libgstallocators-1_0-0, typelib-1_0-GstVideo-1_0, libgstaudio-1_0-0, typelib-1_0-GstRtp-1_0, typelib-1_0-GstPbutils-1_0, typelib-1_0-GstTag-1_0, libgsttag-1_0-0, typelib-1_0-GstRtsp-1_0, libgstpbutils-1_0-0, libgstsdp-1_0-0, libgstriff-1_0-0, libgstfft-1_0-0, typelib-1_0-GstFft-1_0, libgstrtsp-1_0-0, libgstrtp-1_0-0, typelib-1_0-GstApp-1_0, libgstvideo-1_0-0| ID: oval:org.secpod.oval:def:89049584 | Date: (C)2023-12-11 (M)2024-01-08 |
| Class: PATCH | Family: unix |
This update for gstreamer-plugins-base fixes the following issues: * CVE-2023-37327: Fixed FLAC file parsing integer overflow . * CVE-2023-37328: Fixed PGS file parsing heap-based buffer overflow . * CVE-2021-3522: Fixed frame size check and potential invalid reads .
| Platform: |
| SUSE Linux Enterprise Server 15 SP1 |
| Product: |
| gstreamer-plugins-base |
| typelib-1_0-GstSdp-1_0 |
| typelib-1_0-GstAllocators-1_0 |
| libgstapp-1_0-0 |
| typelib-1_0-GstAudio-1_0 |
| libgstallocators-1_0-0 |
| typelib-1_0-GstVideo-1_0 |
| libgstaudio-1_0-0 |
| typelib-1_0-GstRtp-1_0 |
| typelib-1_0-GstPbutils-1_0 |
| typelib-1_0-GstTag-1_0 |
| libgsttag-1_0-0 |
| typelib-1_0-GstRtsp-1_0 |
| libgstpbutils-1_0-0 |
| libgstsdp-1_0-0 |
| libgstriff-1_0-0 |
| libgstfft-1_0-0 |
| typelib-1_0-GstFft-1_0 |
| libgstrtsp-1_0-0 |
| libgstrtp-1_0-0 |
| typelib-1_0-GstApp-1_0 |
| libgstvideo-1_0-0 |
