gst-plugins-bad1.0 1.20.3-0ubuntu1.1 source package in Ubuntu
Changelog
gst-plugins-bad1.0 (1.20.3-0ubuntu1.1) jammy-security; urgency=medium
* SECURITY UPDATE: heap overwrite in PGS subtitle overlay decoder
- debian/patches/CVE-2023-37329-1.patch: make sure enough data is
allocated for the available data in gst/dvdspu/gstspu-pgs.c.
- debian/patches/CVE-2023-37329-2.patch: avoid integer overflow when
checking if enough data is available in gst/dvdspu/gstspu-pgs.c.
- CVE-2023-37329
* SECURITY UPDATE: integer overflow in MXF file handling
- debian/patches/CVE-2023-40474.patch: fix integer overflow causing out
of bounds writes when handling invalid uncompressed video in
gst/mxf/mxfup.c.
- CVE-2023-40474
* SECURITY UPDATE: integer overflow in MXF file handling
- debian/patches/CVE-2023-40475.patch: check number of channels for
AES3 audio in gst/mxf/mxfd10.c.
- CVE-2023-40475
* SECURITY UPDATE: integer overflow in H.265 video parser
- debian/patches/CVE-2023-40476.patch: fix possible overflow using
max_sub_layers_minus1 in gst-libs/gst/codecparsers/gsth265parser.c.
- CVE-2023-40476
* SECURITY UPDATE: AV1 codec parser buffer overflow
- debian/patches/CVE-2023-44429.patch: clip max tile rows and cols
values in gst-libs/gst/codecparsers/gstav1parser.c.
- CVE-2023-44429
* SECURITY UPDATE: MXF demuxer use-after-free
- debian/patches/CVE-2023-44446.patch: store GstMXFDemuxEssenceTrack in
their own fixed allocation in gst/mxf/mxfdemux.*.
- CVE-2023-44446
-- Marc Deslauriers <email address hidden> Tue, 28 Nov 2023 11:40:39 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Jammy | updates | universe | libs | |
| Jammy | security | universe | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| gst-plugins-bad1.0_1.20.3.orig.tar.xz | 5.9 MiB | 7a11c13b55dd1d2386dd902219e41cbfcdda8e1e0aa3e738186c95074b35da4f |
| gst-plugins-bad1.0_1.20.3-0ubuntu1.1.debian.tar.xz | 43.7 KiB | 2c79c748889c01218a6915546eee845bd695f4811c1c4393c24a397a613e47c2 |
| gst-plugins-bad1.0_1.20.3-0ubuntu1.1.dsc | 5.8 KiB | 07d2fdebecd8d64455ad76db3ea023a90816e4cd5b19beaf1562961b45d74f35 |
Available diffs
Binary packages built by this source
- gir1.2-gst-plugins-bad-1.0: GObject introspection data for the GStreamer libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains introspection data for the GStreamer libraries from
the "bad" set. It can be used by packages using the GIRepository format to
generate dynamic bindings.
- gstreamer1.0-opencv: GStreamer OpenCV plugins
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains the OpenCV plugins.
- gstreamer1.0-opencv-dbgsym: debug symbols for gstreamer1.0-opencv
- gstreamer1.0-plugins-bad: GStreamer plugins from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
- gstreamer1.0-plugins-bad-apps: GStreamer helper programs from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
This package contains helper programs from the "bad" set, a set of
plug-ins that aren't up to par compared to the rest. They might be
close to being good quality, but they're missing something - be it a
good code review, some documentation, a set of tests, a real live
maintainer, or some actual wide use.
- gstreamer1.0-plugins-bad-apps-dbgsym: debug symbols for gstreamer1.0-plugins-bad-apps
- gstreamer1.0-plugins-bad-dbgsym: debug symbols for gstreamer1.0-plugins-bad
- gstreamer1.0-wpe: GStreamer WPEWebKit plugin
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains the WPEWebKit plugin.
- gstreamer1.0-wpe-dbgsym: debug symbols for gstreamer1.0-wpe
- libgstreamer-opencv1.0-0: GStreamer OpenCV libraries
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains shared GStreamer libraries for OpenCV.
- libgstreamer-opencv1.0-0-dbgsym: debug symbols for libgstreamer-opencv1.0-0
- libgstreamer-plugins-bad1.0-0: GStreamer libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains shared GStreamer libraries from the "bad" set. The API
is not guaranteed to be stable.
- libgstreamer-plugins-bad1.0-0-dbgsym: debug symbols for libgstreamer-plugins-bad1.0-0
- libgstreamer-plugins-bad1.0-dev: GStreamer development files for libraries from the "bad" set
GStreamer is a streaming media framework, based on graphs of filters
which operate on media data. Applications using this library can do
anything from real-time sound processing to playing videos, and just
about anything else media-related. Its plugin-based architecture means
that new data types or processing capabilities can be added simply by
installing new plug-ins.
.
GStreamer Bad Plug-ins is a set of plug-ins that aren't up to par compared
to the rest. They might be close to being good quality, but they're missing
something - be it a good code review, some documentation, a set of tests, a
real live maintainer, or some actual wide use.
.
This package contains development files for GStreamer libraries from the
"bad" set. The API is not guaranteed to be stable.
