ELA-348-1 gst-plugins-bad1.0 security update

buffer overflow

2021-01-19
Packagegst-plugins-bad1.0
Version1.4.4-2.1+deb8u3
Related CVEs TEMP-0000000-FAEBC0

Andrew Wesie discovered a buffer overflow in the H264 support of the GStreamer multimedia framework, which could potentially result in the execution of arbitrary code.

For Debian 8 jessie, these problems have been fixed in version 1.4.4-2.1+deb8u3.

We recommend that you upgrade your gst-plugins-bad1.0 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/