Overview

File _patchinfo of Package patchinfo.30077

<patchinfo incident="30077">
  <issue tracker="bnc" id="1213750">VUL-0: CVE-2023-38104: gstreamer-plugins-ugly: integer overflow during parsing of MDPR chunks may lead to code execution</issue>
  <issue tracker="bnc" id="1213751">VUL-0: CVE-2023-38103: gstreamer-plugins-ugly: integer overflow during parsing of MDPR chunks may lead to code execution</issue>
  <issue tracker="cve" id="2023-38103"/>
  <issue tracker="cve" id="2023-38104"/>
  <packager>alarrosa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for gstreamer-plugins-ugly</summary>
  <description>This update for gstreamer-plugins-ugly fixes the following issues:

- CVE-2023-38103: Fixed an integer overflows when calculating the size of SIPR audio buffers. (bsc#1213751)
- CVE-2023-38104: Fixed an integer overflow when calculation audio packet size . (bsc#1213750)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places