Upstream information
Description
The gst_asf_demux_process_ext_content_desc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving extended content descriptors.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 5 |
Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
National Vulnerability Database | |
---|---|
Base Score | 7.5 |
Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Access Vector | Network |
Access Complexity | Low |
Privileges Required | None |
User Interaction | None |
Scope | Unchanged |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | High |
CVSSv3 Version | 3 |
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 SP1 GA libgstgl-1_0-0-1.12.5-3.3.1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-plugins-bad-1.12.5-3.3.1 SUSE Linux Enterprise Workstation Extension 15 SP1 GA gstreamer-plugins-ugly-1.12.5-1.35 |
SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP2 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP2 GA libgstphotography-1_0-0-1.16.2-2.17 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-devel-1.16.2-1.53 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-plugins-bad-1.16.2-2.17 SUSE Linux Enterprise Workstation Extension 15 SP2 GA gstreamer-plugins-ugly-1.16.2-1.75 |
SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP3 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP3 GA libgstphotography-1_0-0-1.16.2-7.22 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 GA gstreamer-plugins-bad-1.16.2-7.22 SUSE Linux Enterprise Workstation Extension 15 SP3 GA gstreamer-plugins-ugly-1.16.2-1.75 |
SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP4 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP4 GA gstreamer-1.20.1-150400.1.5 SUSE Linux Enterprise Module for Basesystem 15 SP4 GA libgstphotography-1_0-0-1.20.1-150400.1.8 SUSE Linux Enterprise Module for Desktop Applications 15 SP4 GA gstreamer-plugins-bad-1.20.1-150400.1.8 SUSE Linux Enterprise Workstation Extension 15 SP4 GA gstreamer-plugins-ugly-1.20.1-150400.1.7 |
SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 GA libgstgl-1_0-0-1.12.5-1.40 SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-plugins-bad-1.12.5-1.40 SUSE Linux Enterprise Workstation Extension 15 GA gstreamer-plugins-ugly-1.12.5-1.35 |
SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 SP1 GA libgstgl-1_0-0-1.12.5-3.3.1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-plugins-bad-1.12.5-3.3.1 |
SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.1 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP2 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP2 GA libgstphotography-1_0-0-1.16.2-2.17 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-devel-1.16.2-1.53 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-plugins-bad-1.16.2-2.17 |
SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP3 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP3 GA libgstphotography-1_0-0-1.16.2-7.22 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 GA gstreamer-plugins-bad-1.16.2-7.22 |
SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP4 GA gstreamer-1.20.1-150400.1.5 SUSE Linux Enterprise Module for Basesystem 15 SP4 GA libgstphotography-1_0-0-1.20.1-150400.1.8 SUSE Linux Enterprise Module for Desktop Applications 15 SP4 GA gstreamer-plugins-bad-1.20.1-150400.1.8 |
SUSE Linux Enterprise High Performance Computing 15 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 GA libgstgl-1_0-0-1.12.5-1.40 SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-plugins-bad-1.12.5-1.40 |
SUSE Linux Enterprise Module for Basesystem 15 SP1 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 SP1 GA libgstgl-1_0-0-1.12.5-3.3.1 |
SUSE Linux Enterprise Module for Basesystem 15 SP2 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP2 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP2 GA libgstphotography-1_0-0-1.16.2-2.17 |
SUSE Linux Enterprise Module for Basesystem 15 SP3 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP3 GA gstreamer-1.16.2-1.53 SUSE Linux Enterprise Module for Basesystem 15 SP3 GA libgstphotography-1_0-0-1.16.2-7.22 |
SUSE Linux Enterprise Module for Basesystem 15 SP4 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP4 GA gstreamer-1.20.1-150400.1.5 SUSE Linux Enterprise Module for Basesystem 15 SP4 GA libgstphotography-1_0-0-1.20.1-150400.1.8 |
SUSE Linux Enterprise Module for Basesystem 15 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA gstreamer-1.12.5-1.17 SUSE Linux Enterprise Module for Basesystem 15 GA libgstgl-1_0-0-1.12.5-1.40 |
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 GA gstreamer-plugins-bad-1.12.5-3.3.1 |
SUSE Linux Enterprise Module for Desktop Applications 15 SP2 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-devel-1.16.2-1.53 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 GA gstreamer-plugins-bad-1.16.2-2.17 |
SUSE Linux Enterprise Module for Desktop Applications 15 SP3 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 SP3 GA gstreamer-plugins-bad-1.16.2-7.22 |
SUSE Linux Enterprise Module for Desktop Applications 15 SP4 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 SP4 GA gstreamer-plugins-bad-1.20.1-150400.1.8 |
SUSE Linux Enterprise Module for Desktop Applications 15 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-devel-1.12.5-1.17 SUSE Linux Enterprise Module for Desktop Applications 15 GA gstreamer-plugins-bad-1.12.5-1.40 |
SUSE Linux Enterprise Workstation Extension 15 SP1 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 15 SP1 GA gstreamer-plugins-ugly-1.12.5-1.35 |
SUSE Linux Enterprise Workstation Extension 15 SP2 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 15 SP2 GA gstreamer-plugins-ugly-1.16.2-1.75 |
SUSE Linux Enterprise Workstation Extension 15 SP3 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 15 SP3 GA gstreamer-plugins-ugly-1.16.2-1.75 |
SUSE Linux Enterprise Workstation Extension 15 SP4 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 15 SP4 GA gstreamer-plugins-ugly-1.20.1-150400.1.7 |
SUSE Linux Enterprise Workstation Extension 15 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 15 GA gstreamer-plugins-ugly-1.12.5-1.35 |
openSUSE Leap 15.0 |
| Patchnames: openSUSE Leap 15.0 GA gstreamer-1.12.5-lp150.1.1 openSUSE Leap 15.0 GA gstreamer-plugins-bad-1.12.5-lp150.1.3 openSUSE Leap 15.0 GA gstreamer-plugins-ugly-1.12.5-lp150.1.1 |
openSUSE Leap 15.2 |
| Patchnames: openSUSE Leap 15.2 GA gstreamer-1.16.2-lp152.1.3 openSUSE Leap 15.2 GA gstreamer-plugins-bad-1.16.2-lp152.2.1 openSUSE Leap 15.2 GA gstreamer-plugins-ugly-1.16.2-lp152.1.1 |
openSUSE Leap 15.3 |
| Patchnames: openSUSE Leap 15.3 GA gstreamer-1.16.2-1.53 openSUSE Leap 15.3 GA gstreamer-plugins-bad-1.16.2-lp153.2.114 openSUSE Leap 15.3 GA gstreamer-plugins-ugly-1.16.2-1.75 |
openSUSE Leap 15.4 |
| Patchnames: openSUSE Leap 15.4 GA gstreamer-1.20.1-150400.1.5 openSUSE Leap 15.4 GA gstreamer-plugins-bad-1.20.1-lp154.1.1 openSUSE Leap 15.4 GA gstreamer-plugins-ugly-1.20.1-150400.1.7 |
openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA gstreamer-1.18.5-2.1 openSUSE Tumbleweed GA gstreamer-plugins-bad-1.18.5-2.1 openSUSE Tumbleweed GA gstreamer-plugins-ugly-1.18.5-2.1 |