File _patchinfo of Package patchinfo.25653

<patchinfo incident="25653">
  <issue tracker="cve" id="2022-1921"/>
  <issue tracker="cve" id="2022-1924"/>
  <issue tracker="cve" id="2022-1920"/>
  <issue tracker="cve" id="2022-2122"/>
  <issue tracker="cve" id="2022-1922"/>
  <issue tracker="cve" id="2022-1923"/>
  <issue tracker="cve" id="2022-1925"/>
  <issue tracker="bnc" id="1201708">VUL-0: CVE-2022-2122: gstreamer-0_10-plugins-good,gstreamer-plugins-good: DOS / potential heap overwrite in qtdemux using zlib</issue>
  <issue tracker="bnc" id="1201702">VUL-0: CVE-2022-1922: gstreamer-0_10-plugins-good,gstreamer-plugins-good: DOS / potential heap overwrite in mkv demuxing</issue>
  <issue tracker="bnc" id="1201688">VUL-0: CVE-2022-1920: gstreamer-0_10-plugins-good,gstreamer-plugins-good: Heap overwrite in matroska element</issue>
  <issue tracker="bnc" id="1201706">VUL-0: CVE-2022-1924: gstreamer-0_10-plugins-good,gstreamer-plugins-good: DOS / potential heap overwrite in mkv demuxing using lzo</issue>
  <issue tracker="bnc" id="1201707">VUL-0: CVE-2022-1925: gstreamer-0_10-plugins-good,gstreamer-plugins-good: DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP</issue>
  <issue tracker="bnc" id="1201704">VUL-0: CVE-2022-1923: gstreamer-0_10-plugins-good,gstreamer-plugins-good: DOS / potential heap overwrite in mkv demuxing using bzip</issue>
  <issue tracker="bnc" id="1201693">VUL-0: CVE-2022-1921: gstreamer-0_10-plugins-good,gstreamer-plugins-good: Heap overwrite in avidemux element</issue>
  <packager>mgorse</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for gstreamer-0_10-plugins-good</summary>
  <description>This update for gstreamer-0_10-plugins-good fixes the following issues:

- CVE-2022-1920: Fixed an integer overflow while parsing matroska files (bsc#1201688).
- CVE-2022-1921: Fixed an integer overflow while parsing avi files (bsc#1201693).
- CVE-2022-1922: Fixed an integer overflow during mkv demuxing using zlib decompression (bsc#1201702).
- CVE-2022-1923: Fixed an integer overflow during mkv demuxing using bzip decompression (bsc#1201704).
- CVE-2022-1924: Fixed an integer overflow during mkv demuxing using lzo decompression (bsc#1201706).
- CVE-2022-1925: Fixed an integer overflow during mkv demuxing using HEADERSTRIP decompression (bsc#1201707).
- CVE-2022-2122: Fixed an integer overflow in qtdemux using zlib decompression (bsc#1201708).
</description>
</patchinfo>