Package "gstreamer0.10-plugins-good-doc"

  gst-plugins-good0.10 (0.10.31-1ubuntu1.5) precise-security; urgency=medium

  * SECURITY UPDATE: DoS in gst_aac_parse_sink_setcaps
    - debian/patches/CVE-2016-10198.patch: make sure there's enough data in
      gst/audioparsers/gstaacparse.c.
    - CVE-2016-10198
  * SECURITY UPDATE: DoS in qtdemux_tag_add_str_full
    - debian/patches/CVE-2016-10199.patch: fix out of bounds read in
      gst/isomp4/qtdemux.c.
    - CVE-2016-10199
  * SECURITY UPDATE: DoS in qtdemux_parse_samples
    - debian/patches/CVE-2017-5840.patch: properly increment stts index in
      gst/isomp4/qtdemux.c.
    - CVE-2017-5840

 -- Marc Deslauriers <email address hidden> Fri, 24 Mar 2017 09:47:03 -0400

  gst-plugins-good0.10 (0.10.31-1ubuntu1.4) precise-security; urgency=medium

  * SECURITY UPDATE: incomplete fix for flx decoder security issue
    - debian/gstreamer-plugins-good.install: remove FLX decoder plugin.
    - No CVE number

 -- Marc Deslauriers <email address hidden> Fri, 25 Nov 2016 14:16:41 -0500

  gst-plugins-good0.10 (0.10.31-1ubuntu1.3) precise-security; urgency=medium

  * SECURITY UPDATE: code execution via out-of-bounds write in flx decoder
    - debian/patches/flxdec-bounds1.patch: add bounds checking to
      gst/flx/gstflxdec.c.
    - debian/patches/flxdec-bounds2.patch: fix compiler warnings in
      gst/flx/gstflxdec.c.
    - No CVE number

 -- Marc Deslauriers <email address hidden> Tue, 22 Nov 2016 08:56:53 -0500