-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4514-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta March 29, 2026 https://wiki.debian.org/LTS - -----------------------------------------------------------------------
Package : gst-plugins-base1.0 Version : 1.18.4-2+deb11u5 CVE ID : CVE-2026-2921 An integer overflow was discovered in the RIFF parser of the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. For Debian 11 bullseye, this problem has been fixed in version 1.18.4-2+deb11u5. We recommend that you upgrade your gst-plugins-base1.0 packages. For the detailed security status of gst-plugins-base1.0 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/gst-plugins-base1.0 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAmnJBvoACgkQgj6WdgbD S5aG/xAA1MFWEwhALt5uvY5xpCYNCG4N1zpZO1bVA0VYA53j06uhoRaTqTmVlvuu fZfxReRDxV1yp9pu+d2PsRmH/lAywObn7EQufsi+huoZl34t6a/GOrZ5rdqfSsP2 kMN+Jvpy1JC1q8ze3Nf/F8ONoia1iISm+S+Hx0SQFlMJwPPn4vN3lUXzbEzdgA/C 1NMnikIPGFWewFMMC2rCJdlxgKn2ZugDpCE+vz5r7eEt5fyNd7H63mfs8bsegCTx TbaweSSV4TF2yev2UdB1uZBn81rZ0eG15267Q0VXDbT5slji8JNqrpzng/WoCCPZ e7nwFQw1+S8prgj2FvAd4UsLhBADW4wB5s/5s5mnVl6YKxKQqrVq9BxBrbINaKVU avctoW5reO/tQNfTEDWb9jy8yfXA57eMlf/qEqNvkgt5ptdVmqll4c31q2MZ8mqN lpVfKGsGPFzKJnbO8Br4C2+rrqwLVoe1U9vjPj+HPJqvBmxX/ptiRmBllVAdJvkw znpSTwuSSipGirQiOh4c1ulxuNKHf+DZzTfaImXKWZLI4aNrdFIF8eQWczjf9OEz toNtwDVjlcFAmLNBMe1tSf9Mtf9L+b46a3Uzq2EEMwlGpdlavqWdnE+ahqk1O12A nMd2RRqU3ISJEJNywBSabqueWAUSSSvtdiZtzBeJLZEx65GSCpo= =r693 -----END PGP SIGNATURE-----
