Updated gstreamer-plugins-base packages that fix a security issue are nowavailable for Red Hat Enterprise Linux 5.This update has been rated as having moderate security impact by the RedHat Security Response Team.GStreamer is a streaming media framework based on graphs of filters whichoperate on media data. GStreamer Base Plug-ins is a collection ofwell-maintained base plug-ins.An integer overflow flaw which caused a heap-based buffer overflow wasdiscovered in the Vorbis comment tags reader. An attacker could create acarefully-crafted Vorbis file that would cause an application usingGStreamer to crash or, potentially, execute arbitrary code if opened by avictim. (CVE-2009-0586)