vulnerability

Ubuntu: USN-3135-2: GStreamer Good Plugins vulnerability

Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
Nov 28, 2016
Added
Nov 28, 2016
Modified
Feb 19, 2025

Description


USN-3135-1 fixed a vulnerability in GStreamer Good Plugins. The original security fix was incomplete. This update fixes the problem.


Original advisory details:


Chris Evans discovered that GStreamer Good Plugins did not correctly handle malformed FLC movie files. If a user were tricked into opening a crafted FLC movie file with a GStreamer application, an attacker could cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking the program.

Solution(s)

ubuntu-upgrade-gstreamer0-10-plugins-goodubuntu-upgrade-gstreamer1-0-plugins-good
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.