stable

mingw-directxmath-3.20-1.fc40, mingw-gstreamer1-1.24.10-1.fc40, & 4 more

FEDORA-2024-2284729772 created by smani 4 months ago for Fedora 40

Update to 1.24.10, fixes multiple CVEs.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-2284729772

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been submitted for testing by bodhi.

4 months ago

This update has been pushed to testing.

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
approved
4 months ago
BZ#2331792 CVE-2024-47542 mingw-gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference [fedora-40]
0
0
BZ#2331796 CVE-2024-47540 mingw-gstreamer1-plugins-good: uninitialized stack memory in Matroska/WebM demuxer [fedora-40]
0
0
BZ#2331813 CVE-2024-47537 mingw-gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c [fedora-40]
0
0
BZ#2331817 CVE-2024-47539 mingw-gstreamer1-plugins-good: OOB-write in convert_to_s334_1a [fedora-40]
0
0
BZ#2331825 CVE-2024-47538 mingw-gstreamer1-plugins-base: GStreamer has a stack-buffer overflow in vorbis_handle_identification_packet [fedora-40]
0
0
BZ#2331863 CVE-2024-47615 mingw-gstreamer1-plugins-base: out-of-bounds write in Ogg demuxer [fedora-40]
0
0
BZ#2331867 CVE-2024-47613 mingw-gstreamer1-plugins-good: null pointer dereference in gst_gdk_pixbuf_dec_flush [fedora-40]
0
0
BZ#2331873 CVE-2024-47607 mingw-gstreamer1-plugins-base: stack-buffer overflow in gst_opus_dec_parse_header [fedora-40]
0
0
BZ#2331888 CVE-2024-47606 mingw-gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes [fedora-40]
0
0
BZ#2331892 CVE-2024-47543 mingw-gstreamer1-plugins-good: OOB-read in qtdemux_parse_container [fedora-40]
0
0
BZ#2331897 CVE-2024-47541 mingw-gstreamer1-plugins-base: GStreamer has an out-of-bounds write in SSA subtitle parser [fedora-40]
0
0
BZ#2331901 CVE-2024-47600 mingw-gstreamer1-plugins-base: GStreamer has an OOB-read in format_channel_mask [fedora-40]
0
0
BZ#2331905 CVE-2024-47774 mingw-gstreamer1-plugins-good: GStreamer has an OOB-read in gst_avi_subtitle_parse_gab2_chunk [fedora-40]
0
0
BZ#2332090 CVE-2024-47777 mingw-gstreamer1-plugins-good: OOB-read in gst_wavparse_smpl_chunk [fedora-40]
0
0
BZ#2332092 CVE-2024-47835 mingw-gstreamer1-plugins-base: NULL-pointer dereference in LRC subtitle parser [fedora-40]
0
0
BZ#2332095 CVE-2024-47778 mingw-gstreamer1-plugins-good: OOB-read in gst_wavparse_adtl_chunk [fedora-40]
0
0
BZ#2332097 CVE-2024-47775 mingw-gstreamer1-plugins-good: OOB-read in parse_ds64 [fedora-40]
0
0
BZ#2332099 CVE-2024-47596 mingw-gstreamer1-plugins-good: OOB-read in FOURCC_SMI_ parsing [fedora-40]
0
0

Automated Test Results