Security update for gstreamer-0_10-plugins-good
This update for gstreamer-0_10-plugins-good fixes the following issues:
Security issues fixed:
- CVE-2016-9634, CVE-2016-9635: add some bounds checking (boo#1012102 boo#1012103).
- CVE-2016-9636: fix casting for some comparisons (boo#1012104).
- CVE-2016-9807, CVE-2016-9808: rewrite logic using GsgtByteReader/Writer (boo#1013653 boo#1013655).
- CVE-2016-9810: don't unref() parent in the chain function (boo#1013663).
-
Submitted by
Michael Gorse (mgorse)
Fixed bugs
bnc#1013655
VUL-0: CVE-2016-9807: gstreamer-plugins-good: flic decoder invalid read
bnc#1012102
VUL-0: CVE-2016-9634: gstreamer-plugins-good: out-of-bounds write 1
bnc#1012103
VUL-0: CVE-2016-9635: gstreamer-plugins-good: out-of-bounds write 2
bnc#1013653
VUL-0: CVE-2016-9808: gstreamer-plugins-good: still a bug in flic decoder
bnc#1012104
VUL-0: CVE-2016-9635: gstreamer-plugins-good: out-of-bounds write 3
bnc#1013663
VUL-0: CVE-2016-9810: gstreamer-plugins-good: flxdec: Unreferences itself one time too many on invalid files