Security Advisory 2021-0001 (CVE-2021-3522)
DetailsGStreamer before 1.18.4 might do an out-of-bounds read when handling certain ID3v2 tags. ImpactIt might be possible for a malicious third party to trigger a crash in the application. SolutionThe gst-plugins-base 1.18.4 release addresses the issue. People using older branches of GStreamer should apply the patch and recompile. ReferencesThe GStreamer projectGStreamer 1.18.4 releasePatches |
Report a problem on this page. |