Overview

File _patchinfo of Package patchinfo.30074

<patchinfo incident="30074">
  <issue tracker="bnc" id="1213128">VUL-0: CVE-2023-37327: gstreamer-plugins-good,gstreamer-plugins-base,gstreamer-0_10-plugins-good: GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability</issue>
  <issue tracker="bnc" id="1213131">VUL-0: CVE-2023-37328: gstreamer-0_10-plugins-bad,gstreamer-plugins-bad: GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability</issue>
  <issue tracker="cve" id="2023-37327"/>
  <issue tracker="cve" id="2023-37328"/>
  <packager>alarrosa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for gstreamer-plugins-base</summary>
  <description>This update for gstreamer-plugins-base fixes the following issues:

- CVE-2023-37327: Fixed FLAC file parsing integer overflow remote code execution vulnerability. (bsc#1213128)
- CVE-2023-37328: Fixed PGS file parsing heap-based buffer overflow remote code execution vulnerability. (bsc#1213131)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places