Wind River Support Network

HomeDefectsLIN9-3399

Fixed

LIN9-3399 : Security Advisory - gstreamer - CVE-2017-5847

Created: Feb 27, 2017 Updated: May 29, 2018

Resolved Date: Apr 10, 2018

Found In Version: 9.0.0.3

Fix Version: 9.0.0.5

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

The gst_asf_demux_process_ext_content_desc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving extended content descriptors.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5847

Other Downloads

Wind River Linux 9.0.0.4
Wind River Linux 9.0.0.5

CVEs

CVE-2017-5847