| Errata ID | 298 |
|---|---|
| Date | 2018-02-14 |
| Source package | gst-plugins-good1.0 |
| Fixed in version | 1.4.4-2+deb8u3 |
| Description | This update addresses the following issues: * CVE-2016-10198: Invalid memory read in gst_aac_parse_sink_setcaps * CVE-2016-10199: Out of bounds read in qtdemux_tag_add_str_full * CVE-2017-5840: Out of bounds heap read in qtdemux_parse_samples * CVE-2017-5841: Heap out-of-bounds read in gst_avi_demux_parse_ncdt * CVE-2017-5845: Invalid memory read in gst_avi_demux_parse_ncdt |
| Additional notes | |
| CVE ID | CVE-2016-10198 CVE-2016-10199 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 |
| UCS Bug number | #46123 |
