Oval Definition:oval:org.mitre.oval:def:8176
Revision Date:2014-06-23Version:17
Title:DSA-1729 gst-plugins-bad0.10 -- several vulnerabilities
Description:Several vulnerabilities have been found in gst-plugins-bad0.10, a collection of various GStreamer plugins. The Common Vulnerabilities and Exposures project identifies the following problems: Tobias Klein discovered a buffer overflow in the quicktime stream demuxer (qtdemux), which could potentially lead to the execution of arbitrary code via crafted .mov files. Tobias Klein discovered an array index error in the quicktime stream demuxer (qtdemux), which could potentially lead to the execution of arbitrary code via crafted .mov files. Tobias Klein discovered a buffer overflow in the quicktime stream demuxer (qtdemux) similar to the issue reported in CVE-2009-0386, which could also lead to the execution of arbitrary code via crafted .mov files.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0386
CVE-2009-0387
CVE-2009-0397
DSA-1729
Platform(s):Debian GNU/Linux 4.0
Product(s):gst-plugins-bad0.10
Definition Synopsis
  • Debian GNU/Linux 4.0 is installed.
  • AND Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is i386
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is mipsel
  • OR Installed architecture is arm
  • AND gstreamer0.10-plugins-bad is earlier than 0.10.3-3.1+etch1
  • BACK