UbuntuUpdates.org

Package "gst-plugins-base1.0"

Name: gst-plugins-base1.0

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Description: GObject introspection data for the GStreamer Plugins Base library
  • GStreamer plugin for ALSA
  • GStreamer plugins from the "base" set
  • GStreamer helper programs from the "base" set

Latest version: 1.2.4-1~ubuntu2.1
Release: trusty (14.04)
Level: updates
Repository: main

Links



Other versions of "gst-plugins-base1.0" in Trusty

Repository Area Version
base main 1.2.3-1
security main 1.2.4-1~ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.2.4-1~ubuntu2.1 2017-03-27 19:07:00 UTC

  gst-plugins-base1.0 (1.2.4-1~ubuntu2.1) trusty-security; urgency=medium

  * SECURITY UPDATE: DoS in windows_icon_typefind
    - debian/patches/CVE-2016-9811.patch: add bounds check in
      gst/typefind/gsttypefindfunctions.c.
    - CVE-2016-9811
  * SECURITY UPDATE: DoS in gst_riff_create_audio_caps
    - debian/patches/CVE-2017-5837.patch: check for valid channels/rate in
      gst-libs/gst/riff/riff-media.c.
    - CVE-2017-5837
  * SECURITY UPDATE: DoS in gst_riff_create_audio_caps
    - debian/patches/CVE-2017-5839.patch: fix infinite recursion in
      gst-libs/gst/riff/riff-media.c.
    - CVE-2017-5839
  * SECURITY UPDATE: DoS in html_context_handle_element
    - debian/patches/CVE-2017-5842.patch: check for non-zero length in
      gst/subparse/samiparse.c.
    - CVE-2017-5842
  * SECURITY UPDATE: DoS in gst_riff_create_audio_caps
    - debian/patches/CVE-2017-5844.patch: fix divide by zero in
      gst-libs/gst/riff/riff-media.c.
    - CVE-2017-5844

 -- Marc Deslauriers <email address hidden> Thu, 23 Mar 2017 13:04:52 -0400

Source diff to previous version
CVE-2016-9811 The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to c
CVE-2017-5837 The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to c
CVE-2017-5839 The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 does not properly limit recu
CVE-2017-5842 The html_context_handle_element function in gst/subparse/samiparse.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause
CVE-2017-5844 The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to c

Version: 1.2.4-1~ubuntu2 2015-12-10 23:06:24 UTC

  gst-plugins-base1.0 (1.2.4-1~ubuntu2) trusty; urgency=medium

  [ Johannes Dewender ]
  * Cherry pick fix for MusicBrainz Audio CD ID calculation, to avoid
    an error message when submitting to the MB database (LP: #1489816)

 -- Michael Terry Wed, 14 Oct 2015 14:49:29 -0400

Source diff to previous version
1489816 gstreamer/rhythmbox submits invalid Disc IDs to MusicBrainz (Trusty Tahr)

Version: 1.2.4-1~ubuntu1 2014-05-27 00:07:35 UTC

  gst-plugins-base1.0 (1.2.4-1~ubuntu1) trusty; urgency=medium

  * Upload Debian bugfix update as a trusty SRU (lp: #1312305)

  [ Sebastian Dr��ge ]
  * New upstream bugfix release.
 -- Sebastien Bacher <email address hidden> Thu, 24 Apr 2014 13:47:16 +0200




About   -   Send Feedback to @ubuntu_updates