Date: Sun, 30 Jun 2024 13:50:02 +0000 From: bugzilla-noreply@freebsd.org To: multimedia@FreeBSD.org Subject: [Bug 278914] multimedia/gstreamer1: Update to 1.24.5 Message-ID: <bug-278914-12827-Gd2Ul9TCwO@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-278914-12827@https.bugs.freebsd.org/bugzilla/> References: <bug-278914-12827@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278914 Yokomichi <diario202@outlook.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |diario202@outlook.com --- Comment #1 from Yokomichi <diario202@outlook.com> --- I also suggest an exp-run, since multiple vulnerabilities have been found in multimedia/gstreamer1 and multimedia/gstreamer1-plugins-bad. 1.22.10 and earlier versions are vulnerable, 1.22.11 and later are safe.=20 References [ 1 ] CVE-2023-40474 https://nvd.nist.gov/vuln/detail/CVE-2023-40474 [ 2 ] CVE-2023-40475 https://nvd.nist.gov/vuln/detail/CVE-2023-40475 [ 3 ] CVE-2023-40476 https://nvd.nist.gov/vuln/detail/CVE-2023-40476 [ 4 ] CVE-2023-44429 https://nvd.nist.gov/vuln/detail/CVE-2023-44429 [ 5 ] CVE-2023-44446 https://nvd.nist.gov/vuln/detail/CVE-2023-44446 [ 6 ] ZDI-CAN-21660 [ 7 ] ZDI-CAN-21661 [ 8 ] ZDI-CAN-21768 [ 9 ] ZDI-CAN-22226 [ 10 ] ZDI-CAN-22299 --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-278914-12827-Gd2Ul9TCwO>