1
PublicDateAtUSN: 2017-02-09
2
Candidate: CVE-2016-10198
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10198
6
http://www.openwall.com/lists/oss-security/2017/02/01/7
7
https://usn.ubuntu.com/usn/usn-3245-1
9
The gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c
10
in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to
11
cause a denial of service (invalid memory read and crash) via a crafted
16
https://bugzilla.gnome.org/show_bug.cgi?id=775450
18
Discovered-by: Hanno Böck
21
Patches_gst-plugins-good0.10:
22
upstream_gst-plugins-good0.10: needed
23
precise_gst-plugins-good0.10: released (0.10.31-1ubuntu1.5)
24
precise/esm_gst-plugins-good0.10: DNE (precise was released [0.10.31-1ubuntu1.5])
25
trusty_gst-plugins-good0.10: released (0.10.31-3+nmu1ubuntu5.3)
26
vivid/stable-phone-overlay_gst-plugins-good0.10: ignored (reached end-of-life)
27
vivid/ubuntu-core_gst-plugins-good0.10: DNE
28
xenial_gst-plugins-good0.10: released (0.10.31-3+nmu4ubuntu2.16.04.3)
29
yakkety_gst-plugins-good0.10: DNE
30
zesty_gst-plugins-good0.10: DNE
31
devel_gst-plugins-good0.10: DNE
33
Patches_gst-plugins-good1.0:
34
upstream: https://github.com/GStreamer/gst-plugins-good/commit/87a2c140ca54c5128093377e9b25a5c24b346727
35
upstream_gst-plugins-good1.0: released (1.10.3-1)
36
precise_gst-plugins-good1.0: DNE
37
precise/esm_gst-plugins-good1.0: DNE
38
trusty_gst-plugins-good1.0: released (1.2.4-1~ubuntu1.4)
39
vivid/stable-phone-overlay_gst-plugins-good1.0: ignored (reached end-of-life)
40
vivid/ubuntu-core_gst-plugins-good1.0: DNE
41
xenial_gst-plugins-good1.0: released (1.8.3-1ubuntu0.4)
42
yakkety_gst-plugins-good1.0: released (1.8.3-1ubuntu1.3)
43
zesty_gst-plugins-good1.0: not-affected (1.10.3-1ubuntu1)
44
devel_gst-plugins-good1.0: not-affected (1.10.3-1ubuntu1)