1
Candidate: CVE-2016-9813
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
http://www.openwall.com/lists/oss-security/2016/12/05/8
7
The _parse_pat function in the mpegts parser in GStreamer before 1.10.2
8
allows remote attackers to cause a denial of service (NULL pointer
9
dereference and crash) via a crafted file.
13
https://bugzilla.gnome.org/show_bug.cgi?id=775120
15
Discovered-by: Hanno Böck
18
Patches_gst-plugins-bad1.0:
19
upstream: https://cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/?h=1.10&id=2513c4f383799bd415a4b650f4fcf011262a13fb
20
upstream_gst-plugins-bad1.0: released (1.10.2-1)
21
precise_gst-plugins-bad1.0: DNE
22
precise/esm_gst-plugins-bad1.0: DNE
23
trusty_gst-plugins-bad1.0: needed
24
vivid/stable-phone-overlay_gst-plugins-bad1.0: ignored (reached end-of-life)
25
vivid/ubuntu-core_gst-plugins-bad1.0: DNE
26
xenial_gst-plugins-bad1.0: needed
27
yakkety_gst-plugins-bad1.0: ignored (reached end-of-life)
28
zesty_gst-plugins-bad1.0: released (1.10.2-1ubuntu1)
29
artful_gst-plugins-bad1.0: released (1.10.2-1ubuntu1)
30
bionic_gst-plugins-bad1.0: released (1.10.2-1ubuntu1)
31
devel_gst-plugins-bad1.0: released (1.10.2-1ubuntu1)
33
Patches_gst-plugins-bad0.10:
34
upstream_gst-plugins-bad0.10: needs-triage
35
precise_gst-plugins-bad0.10: not-affected (code not present)
36
precise/esm_gst-plugins-bad0.10: DNE (precise was not-affected [code not present])
37
trusty_gst-plugins-bad0.10: not-affected (code not present)
38
vivid/stable-phone-overlay_gst-plugins-bad0.10: DNE
39
vivid/ubuntu-core_gst-plugins-bad0.10: DNE
40
xenial_gst-plugins-bad0.10: DNE
41
yakkety_gst-plugins-bad0.10: DNE
42
zesty_gst-plugins-bad0.10: DNE
43
artful_gst-plugins-bad0.10: DNE
44
bionic_gst-plugins-bad0.10: DNE
45
devel_gst-plugins-bad0.10: DNE