ELA-410-1 gst-plugins-good1.0 security update

use-after-free

2021-04-26
Packagegst-plugins-good1.0
Version1.4.4-2+deb8u4
Related CVEs CVE-2021-3497

A use-after-free vulnerability was found in the Matroska plugin of the the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.

For Debian 8 jessie, these problems have been fixed in version 1.4.4-2+deb8u4.

We recommend that you upgrade your gst-plugins-good1.0 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/