- Vulnerability/
- USN-6526-1
USN-6526-1: GStreamer Bad Plugins vulnerabilities
First published: Wed Nov 29 2023(Updated: )
It was discovered that GStreamer Bad Plugins incorrectly handled certain media files. A remote attacker could use this issue to cause GStreamer Bad Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/gstreamer1.0-plugins-bad | <1.22.4-1ubuntu1.1 | 1.22.4-1ubuntu1.1 |
| =23.10 | ||
| All of | ||
| ubuntu/libgstreamer-plugins-bad1.0-0 | <1.22.4-1ubuntu1.1 | 1.22.4-1ubuntu1.1 |
| =23.10 | ||
| All of | ||
| ubuntu/gstreamer1.0-plugins-bad | <1.22.1-1ubuntu1.1 | 1.22.1-1ubuntu1.1 |
| =23.04 | ||
| All of | ||
| ubuntu/libgstreamer-plugins-bad1.0-0 | <1.22.1-1ubuntu1.1 | 1.22.1-1ubuntu1.1 |
| =23.04 | ||
| All of | ||
| ubuntu/gstreamer1.0-plugins-bad | <1.20.3-0ubuntu1.1 | 1.20.3-0ubuntu1.1 |
| =22.04 | ||
| All of | ||
| ubuntu/libgstreamer-plugins-bad1.0-0 | <1.20.3-0ubuntu1.1 | 1.20.3-0ubuntu1.1 |
| =22.04 | ||
| All of | ||
| ubuntu/gstreamer1.0-plugins-bad | <1.16.3-0ubuntu1.1 | 1.16.3-0ubuntu1.1 |
| =20.04 | ||
| All of | ||
| ubuntu/libgstreamer-plugins-bad1.0-0 | <1.16.3-0ubuntu1.1 | 1.16.3-0ubuntu1.1 |
| =20.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2023-40476
- https://ubuntu.com/security/CVE-2023-44429
- https://ubuntu.com/security/CVE-2023-40474
- https://ubuntu.com/security/CVE-2023-44446
- https://ubuntu.com/security/CVE-2023-40475
- https://ubuntu.com/security/CVE-2023-37329
- https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.22.4-1ubuntu1.1
- https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.22.1-1ubuntu1.1
- https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.20.3-0ubuntu1.1
- https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.16.3-0ubuntu1.1
- https://ubuntu.com/security/notices/USN-6526-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of USN-6526-1?
The severity of USN-6526-1 is high.
How does GStreamer Bad Plugins vulnerabilities impact my system?
GStreamer Bad Plugins vulnerabilities can cause crashing, denial of service, or possibly execute arbitrary code on your system.
Which versions of GStreamer Bad Plugins are affected by the vulnerabilities?
The affected versions of GStreamer Bad Plugins are 1.22.4-1ubuntu1.1, 1.22.1-1ubuntu1.1, 1.20.3-0ubuntu1.1, and 1.16.3-0ubuntu1.1.
How can I fix the GStreamer Bad Plugins vulnerabilities?
To fix the GStreamer Bad Plugins vulnerabilities, update to the remedy versions provided by Ubuntu: 1.22.4-1ubuntu1.1, 1.22.1-1ubuntu1.1, 1.20.3-0ubuntu1.1, or 1.16.3-0ubuntu1.1.
Where can I find more information about the GStreamer Bad Plugins vulnerabilities?
You can find more information about the GStreamer Bad Plugins vulnerabilities on the Ubuntu security website. Here are the reference links: [CVE-2023-40476](https://ubuntu.com/security/CVE-2023-40476), [CVE-2023-44429](https://ubuntu.com/security/CVE-2023-44429), [CVE-2023-40474](https://ubuntu.com/security/CVE-2023-40474).
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/23.10
- version/ubuntu ubuntu/23.04
- version/ubuntu ubuntu/22.04
- version/ubuntu ubuntu/20.04