gst1-plugins-ugly: security bump to version 1.10.4 (1060ff1c) · Commits · Arm Reference Solutions / buildroot

Commit 1060ff1c authored Feb 23, 2017 by Gustavo Zacarias Committed by Thomas Petazzoni Feb 23, 2017

gst1-plugins-ugly: security bump to version 1.10.4



Fixes:
CVE-2017-5847 - The gst_asf_demux_process_ext_content_desc function in
gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote
attackers to cause a denial of service (out-of-bounds heap read) via vectors
involving extended content descriptors.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

parent 36fd6fa8

Hide whitespace changes

Inline Side-by-side

Please register or to comment