Debian 10260 Published by

A gst-plugins-bad0.10 security update has been released for Debian GNU/Linux 8 Extended LTS to address a buffer overflow issue.



ELA-486-1 gst-plugins-bad0.10 security update

Package gst-plugins-bad0.10
Version 0.10.23-7.4+deb8u5
Related CVEs CVE-2021-3185

Andrew Wesie discovered a buffer overflow in the H264 support of the GStreamer multimedia framework, which could potentially result in the execution of arbitrary code.

For Debian 8 jessie, these problems have been fixed in version 0.10.23-7.4+deb8u5.

We recommend that you upgrade your gst-plugins-bad0.10 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-486-1 gst-plugins-bad0.10 security update