gst-plugins-bad1.0 1.22.1-1ubuntu1.1 source package in Ubuntu
Changelog
gst-plugins-bad1.0 (1.22.1-1ubuntu1.1) lunar-security; urgency=medium
* SECURITY UPDATE: heap overwrite in PGS subtitle overlay decoder
- debian/patches/CVE-2023-37329-1.patch: make sure enough data is
allocated for the available data in gst/dvdspu/gstspu-pgs.c.
- debian/patches/CVE-2023-37329-2.patch: avoid integer overflow when
checking if enough data is available in gst/dvdspu/gstspu-pgs.c.
- CVE-2023-37329
* SECURITY UPDATE: integer overflow in MXF file handling
- debian/patches/CVE-2023-40474.patch: fix integer overflow causing out
of bounds writes when handling invalid uncompressed video in
gst/mxf/mxfup.c.
- CVE-2023-40474
* SECURITY UPDATE: integer overflow in MXF file handling
- debian/patches/CVE-2023-40475.patch: check number of channels for
AES3 audio in gst/mxf/mxfd10.c.
- CVE-2023-40475
* SECURITY UPDATE: integer overflow in H.265 video parser
- debian/patches/CVE-2023-40476.patch: fix possible overflow using
max_sub_layers_minus1 in gst-libs/gst/codecparsers/gsth265parser.c.
- CVE-2023-40476
* SECURITY UPDATE: AV1 codec parser buffer overflow
- debian/patches/CVE-2023-44429.patch: clip max tile rows and cols
values in gst-libs/gst/codecparsers/gstav1parser.c.
- CVE-2023-44429
* SECURITY UPDATE: MXF demuxer use-after-free
- debian/patches/CVE-2023-44446.patch: store GstMXFDemuxEssenceTrack in
their own fixed allocation in gst/mxf/mxfdemux.*.
- CVE-2023-44446
-- Marc Deslauriers <email address hidden> Tue, 28 Nov 2023 11:36:12 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Lunar
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Lunar | updates | universe | libs | |
| Lunar | security | universe | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| gst-plugins-bad1.0_1.22.1.orig.tar.xz | 5.3 MiB | 2f39b6f222d98666f9ff420a00233e336949953a846237c2bfafc8805f509f0e |
| gst-plugins-bad1.0_1.22.1.orig.tar.xz.asc | 833 bytes | 1dfb58a8ddebfb1dd6e31281dbd8aeda2d526c942a3aa3503fdbe4fb1192958d |
| gst-plugins-bad1.0_1.22.1-1ubuntu1.1.debian.tar.xz | 49.6 KiB | 96faa21dbada6b51df0e6ee942d67567167999f845d4af6622cedae97af453e1 |
| gst-plugins-bad1.0_1.22.1-1ubuntu1.1.dsc | 5.9 KiB | aaefee2c35022db2851f5084490c6117ad2578f74e7dc4d6a45984fb451e6649 |
Available diffs
Binary packages built by this source
- gir1.2-gst-plugins-bad-1.0: GObject introspection data for the GStreamer libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains introspection data for the GStreamer libraries from
the "bad" set. It can be used by packages using the GIRepository format to
generate dynamic bindings.
- gstreamer1.0-opencv: GStreamer OpenCV plugins
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains the OpenCV plugins.
- gstreamer1.0-opencv-dbgsym: debug symbols for gstreamer1.0-opencv
- gstreamer1.0-plugins-bad: GStreamer plugins from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
- gstreamer1.0-plugins-bad-apps: GStreamer helper programs from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
This package contains helper programs from the "bad" set, a set of
plug-ins that aren't up to par compared to the rest. They might be
close to being good quality, but they're missing something - be it a
good code review, some documentation, a set of tests, a real live
maintainer, or some actual wide use.
- gstreamer1.0-plugins-bad-apps-dbgsym: debug symbols for gstreamer1.0-plugins-bad-apps
- gstreamer1.0-plugins-bad-dbgsym: debug symbols for gstreamer1.0-plugins-bad
- libgstreamer-opencv1.0-0: GStreamer OpenCV libraries
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains shared GStreamer libraries for OpenCV.
- libgstreamer-opencv1.0-0-dbgsym: debug symbols for libgstreamer-opencv1.0-0
- libgstreamer-plugins-bad1.0-0: GStreamer libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains shared GStreamer libraries from the "bad" set. The API
is not guaranteed to be stable.
- libgstreamer-plugins-bad1.0-0-dbgsym: debug symbols for libgstreamer-plugins-bad1.0-0
- libgstreamer-plugins-bad1.0-dev: GStreamer development files for libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains development files for GStreamer libraries from the
"bad" set. The API is not guaranteed to be stable.
