Advisories ยป MGASA-2021-0079

Updated gstreamer1.0-plugins-bad packages fix security vulnerability

Publication date: 10 Feb 2021
Modification date: 10 Feb 2021
Type: security
Affected Mageia releases : 7
CVE: CVE-2021-3185

Description

A flaw was found in the gstreamer h264 component of gst-plugins-bad before
v1.18.1 where when parsing a h264 header, an attacker could cause the stack to
be smashed, memory corruption and possibly code execution. (CVE-2021-3185).
                

References

SRPMS

7/core

7/tainted