[Apollo] Advisories Statistics light light Login

RLSA-2024:11345

Security Mirrored from RHSA-2024:11345
Issued at: 2024-12-19
Updated at: 2024-12-19

Synopsis

Important: gstreamer1-plugins-base security update



Description

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-base packages contain a collection of well-maintained base plug-ins.

Security Fix(es):

* gstreamer1-plugins-base: GStreamer has a stack-buffer overflow in vorbis_handle_identification_packet (CVE-2024-47538)

* gstreamer1-plugins-base: out-of-bounds write in Ogg demuxer (CVE-2024-47615)

* gstreamer1-plugins-base: stack-buffer overflow in gst_opus_dec_parse_header (CVE-2024-47607)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2331727 2331740 2331754

CVEs

CVE-2024-47538 CVE-2024-47607 CVE-2024-47615

Affected packages

Rocky Linux 8 aarch64 - AppStream

gstreamer1-plugins-base-0:1.16.1-5.el8_10.aarch64.rpm gstreamer1-plugins-base-0:1.16.1-5.el8_10.src.rpm gstreamer1-plugins-base-debuginfo-0:1.16.1-5.el8_10.aarch64.rpm gstreamer1-plugins-base-debugsource-0:1.16.1-5.el8_10.aarch64.rpm gstreamer1-plugins-base-devel-0:1.16.1-5.el8_10.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

gstreamer1-plugins-base-0:1.16.1-5.el8_10.i686.rpm gstreamer1-plugins-base-0:1.16.1-5.el8_10.src.rpm gstreamer1-plugins-base-0:1.16.1-5.el8_10.x86_64.rpm gstreamer1-plugins-base-debuginfo-0:1.16.1-5.el8_10.i686.rpm gstreamer1-plugins-base-debuginfo-0:1.16.1-5.el8_10.x86_64.rpm gstreamer1-plugins-base-debugsource-0:1.16.1-5.el8_10.i686.rpm gstreamer1-plugins-base-debugsource-0:1.16.1-5.el8_10.x86_64.rpm gstreamer1-plugins-base-devel-0:1.16.1-5.el8_10.i686.rpm gstreamer1-plugins-base-devel-0:1.16.1-5.el8_10.x86_64.rpm