{"id":"MGASA-2016-0424","summary":"Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities","details":"Multiple flaws were discovered in GStreamer's FLC/FLI/FLX media file\nformat decoding plug-in. A remote attacker could use these flaws to\ncause an application using GStreamer to crash or, potentially, execute\narbitrary code with the privileges of the user running the application\n(CVE-2016-9634, CVE-2016-9635, CVE-2016-9636, CVE-2016-9808).\n\nAn invalid memory read access flaw was found in GStreamer's FLC/FLI/FLX\nmedia file format decoding plug-in. A remote attacker could use this\nflaw to cause an application using GStreamer to crash\n(CVE-2016-9807, CVE-2016-9810).\n\nNote that CVE-2016-9810 only affected gstreamer1.0-plugins-good.\n","modified":"2026-04-16T01:48:11.079097320Z","published":"2016-12-29T10:29:11Z","upstream":["CVE-2016-9634","CVE-2016-9635","CVE-2016-9636","CVE-2016-9807","CVE-2016-9808","CVE-2016-9810"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0424.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=19830"},{"type":"WEB","url":"https://rhn.redhat.com/errata/RHSA-2016-2975.html"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2016/12/05/8"}],"affected":[{"package":{"name":"gstreamer0.10-plugins-good","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/gstreamer0.10-plugins-good?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.10.31-9.1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0424.json"}},{"package":{"name":"gstreamer1.0-plugins-good","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/gstreamer1.0-plugins-good?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.3-2.1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0424.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}