ELA-486-1 gst-plugins-bad0.10 security update

buffer overflow

2021-09-27
Packagegst-plugins-bad0.10
Version0.10.23-7.4+deb8u5
Related CVEs CVE-2021-3185

Andrew Wesie discovered a buffer overflow in the H264 support of the GStreamer multimedia framework, which could potentially result in the execution of arbitrary code.

For Debian 8 jessie, these problems have been fixed in version 0.10.23-7.4+deb8u5.

We recommend that you upgrade your gst-plugins-bad0.10 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/