TEMP-0000000-C6AAE1

NameTEMP-0000000-C6AAE1
DescriptionCatch overflows in AVC/HEVC NAL unit length calculations
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
gst-plugins-bad0.10 (PTS)jessie, jessie (lts)0.10.23-7.4+deb8u5fixed
gst-plugins-bad1.0 (PTS)jessie, jessie (lts)1.4.4-2.1+deb8u7fixed
stretch (security)1.10.4-1+deb9u2fixed
stretch (lts), stretch1.10.4-1+deb9u5fixed
buster (security), buster, buster (lts)1.14.4-1+deb10u5fixed
bullseye (security), bullseye1.18.4-3+deb11u4fixed
bookworm (security), bookworm1.22.0-4+deb12u5fixed
sid, trixie1.24.9-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
gst-plugins-bad0.10sourcejessie0.10.23-7.4+deb8u4
gst-plugins-bad0.10source(unstable)(unfixed)
gst-plugins-bad1.0sourcejessie1.4.4-2.1+deb8u4
gst-plugins-bad1.0sourcestretch1.10.4-1+deb9u2
gst-plugins-bad1.0sourcebuster1.14.4-1+deb10u2
gst-plugins-bad1.0source(unstable)1.18.4-2

Notes

https://gitlab.freedesktop.org/gstreamer/gst-plugins-bad/-/merge_requests/2103
https://gitlab.freedesktop.org/gstreamer/gst-plugins-bad/-/commit/0cfbf7ad91c7f121192c8ce135769f8eb276c41d (1.18-branch)
Search for package or bug name: Reporting problems