Overview

File _patchinfo of Package patchinfo.20667

<patchinfo incident="20667">
  <issue tracker="cve" id="2021-3498"/>
  <issue tracker="cve" id="2021-3497"/>
  <issue tracker="bnc" id="1184735">VUL-0: CVE-2021-3498: gstreamer-plugins-good: Heap corruption in matroska demuxing</issue>
  <issue tracker="bnc" id="1184739">VUL-0: CVE-2021-3497: gstreamer-plugins-good: Use-after-free in matroska demuxing</issue>
  <packager>mgorse</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for gstreamer-plugins-good</summary>
  <description>This update for gstreamer-plugins-good fixes the following issues:

- CVE-2021-3498: Matroskademux: initialize track context out parameter to NULL before parsing (bsc#1184735).
- CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack (bsc#1184739).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places