New Search

RHSA-2009:0352 -- gstreamer-plugins-base security update (Moderate)

oval:org.mitre.oval:def:29319

Updated gstreamer-plugins-base packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. GStreamer is a streaming media framework based on graphs of filters which operate on media data. GStreamer Base Plug-ins is a collection of well-maintained base plug-ins. An integer overflow flaw which caused a heap-based buffer overflow was discovered in the Vorbis comment tags reader. An attacker could create a carefully-crafted Vorbis file that would cause an application using GStreamer to crash or potentially execute arbitrary code if opened by a victim. (CVE-2009-0586)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 5
  • CentOS Linux 5
Class:
patch
Reference(s):
  • RHSA-2009:0352
  • CESA-2009:0352-CentOS 5
  • CVE-2009-0586
Product(s):
  • gstreamer-plugins-base