-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Package : gst-plugins-ugly0.10 Version : 0.10.19-2+deb7u1 CVE ID : CVE-2017-5846 CVE-2017-5847
Two memory management issues were found in the asfdemux element of the GStreamer "ugly" plugin collection, which can be triggered via a maliciously crafted file. For Debian 7 "Wheezy", these problems have been fixed in version 0.10.19-2+deb7u1. We recommend that you upgrade your gst-plugins-ugly0.10 packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAliokVYACgkQnUbEiOQ2 gwLLDBAAynlo6N0xZvP6dzQxriPE1qtCskuXYN13hPtVmbLogJBSQ0gSHg6rmyZ5 KAussreuEulV1G+et2+DSUWNI2aGsWZo3SK6LUhstqBTnVkGVGFkn0mj3jWtZU+S 0ThEpcybh3zNMMZU5ugx1tXgJbul3n6dnA+0hfd0/f+MSWFhCI+jNAfSo5XtRnVR oTYHr2IVNyHdNf0H2+2VJXlMNRS1tmBsi83d1enhHJs+uE8CPfhO8wR5mxj1x8TS 0GBZDrjHHkp+cRXkRpZ2uPV1XTnyQ24Hs2OrHngSwMlLqX6fc8hmEWaEP8tPkvd3 /Y8Nadia4KWUiBDBf7VlAijiyQVynRtHEIVlGnGl5fCi+ek5RQaSTW/xzlafslq+ +Uv2PSpAbJe+gff/L8R/OIAU70lvfiXmpe1vHbdTa6FKGXbwSp5C5d51/M/r1SzZ gKn5+M25U+SvIfJPjYiAN2NWHzxLjlc2MV8O4UDHa20vQe4+ZHh4WOWR6IvnPb7x yg/vBhwgAMt+bBFQeJmzwWTxifTLkdrYTtQ6IXfyZfRoBHlclvG3HkEJ77ivhUw2 Bt3+oPUCyzGNos7VcOKndC9qVhebLU05KCXdIqyAgMQvx5qE30/dkWcmvPvNHbjp ynXZ04E5ll7NEgxUvcGlbxQTfVeZdfNtpGWDyOGO2j0aq+jFNCA= =Rg3h -----END PGP SIGNATURE-----
