Request 458517: Incident gstreamer-plugins-good - openSUSE Build Service

Overview

Request 458517 accepted

- Add 0001-aacparse-Make-sure-we-have-enough-data-in-the-codec_data-to-be-able-to-parse-it.patch
Make sure there's enough data to parse before doing an
out of bounds read (bsc#1024014, CVE-2016-10198)
- Add 0001-qtdemux-Fix-out-of-bounds-read-in-tag-parsing-code.patch
Fix and out of bounds read in tag parsing code
(bsc#1024017, CVE-2016-10199)
- Add 0001-qtdemux-Increment-current-stts-index-whenever-we-finished.patch
Increment stts index to prevent an out of bounds read and potential crash
(bsc#1024034, CVE-2017-5840)
- Add 0001-avidemux-Fix-various-out-of-bounds-reads-when-parsing-ncdt.patch
Fix various out of bounds reads when parsing ncdt tags
(bsc#1024030, CVE-2017-5841)
- Add 0001-avidemux-Stop-reading-a-ncdt-sub-tag-if-it-goes-behind-the-surrounding-tag.patch
Stop reading a ncdt sub-tag if it goes behind the surrounding tag
to prevent an out of bounds read (bsc#1024062, CVE-2017-5845)

Created by alarrosa about 7 years ago
In state accepted

Incident gstreamer-plugins-good

Comments for request 458517 0

Login required, please login in order to comment

Request History

alarrosa created request about 7 years ago

- Add 0001-aacparse-Make-sure-we-have-enough-data-in-the-codec_data-to-be-able-to-parse-it.patch
Make sure there's enough data to parse before doing an
out of bounds read (bsc#1024014, CVE-2016-10198)
- Add 0001-qtdemux-Fix-out-of-bounds-read-in-tag-parsing-code.patch
Fix and out of bounds read in tag parsing code
(bsc#1024017, CVE-2016-10199)
- Add 0001-qtdemux-Increment-current-stts-index-whenever-we-finished.patch
Increment stts index to prevent an out of bounds read and potential crash
(bsc#1024034, CVE-2017-5840)
- Add 0001-avidemux-Fix-various-out-of-bounds-reads-when-parsing-ncdt.patch
Fix various out of bounds reads when parsing ncdt tags
(bsc#1024030, CVE-2017-5841)
- Add 0001-avidemux-Stop-reading-a-ncdt-sub-tag-if-it-goes-behind-the-surrounding-tag.patch
Stop reading a ncdt sub-tag if it goes behind the surrounding tag
to prevent an out of bounds read (bsc#1024062, CVE-2017-5845)

maintbot added gstreamer-plugins-good as a reviewer about 7 years ago

Submission for gstreamer-plugins-good by someone who is not maintainer in the devel project (multimedia:libs). Please review

maintbot accepted review about 7 years ago

accepted

Zaitor accepted review about 7 years ago

ok

Zaitor approved review about 7 years ago

ok

mgerstner moved maintenance target to openSUSE:Maintenance:6428 about 7 years ago

mgerstner accepted request about 7 years ago

ok

openSUSE Build Service is sponsored by