UbuntuUpdates.org

Package "gstreamer1.0-x"

Name: gstreamer1.0-x

Description:

GStreamer plugins for X11 and Pango
Latest version: 1.26.0-1ubuntu0.1
Release: plucky (25.04)
Level: updates
Repository: main
Head package: gst-plugins-base1.0
Homepage: https://gstreamer.freedesktop.org

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "gstreamer1.0-x"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "gstreamer1.0-x" in Plucky

Repository Area Version
base main 1.26.0-1
security main 1.26.0-1ubuntu0.1

Changelog

Version: 1.26.0-1ubuntu0.1 2025-08-26 19:07:11 UTC

  gst-plugins-base1.0 (1.26.0-1ubuntu0.1) plucky-security; urgency=medium

  * SECURITY UPDATE: DoS via stack overflow in subparse plugin
    - debian/patches/CVE-2025-47806.patch: make sure that subrip time
      string is not too long before zero-padding in
      gst/subparse/gstsubparse.c.
    - CVE-2025-47806
  * SECURITY UPDATE: DoS via null-deref in subparse plugin
    - debian/patches/CVE-2025-47807.patch: check for valid UTF-8 before
      cleaning up lines and check for regex replace errors in
      gst/subparse/gstsubparse.c.
    - CVE-2025-47807
  * SECURITY UPDATE: DoS via null-deref in subparse plugin
    - debian/patches/CVE-2025-47808.patch: don't append NULL + 1 to the
      string buffer when parsing lines without text in
      gst/subparse/tmplayerparse.c.
    - CVE-2025-47808

 -- Marc Deslauriers <email address hidden> Mon, 25 Aug 2025 08:59:51 -0400
CVE-2025-47806 In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
CVE-2025-47807 In GStreamer through 1.26.1, the subparse plugin's subrip_unescape_formatting function may dereference a NULL pointer while parsing a subtitle file,
CVE-2025-47808 In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading


About   -   Send Feedback to @ubuntu_updates