Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2023-40475

Published: 28 September 2023

[Integer overflow leading to heap overwrite in MXF file handling with AES3 audio]

Priority

Medium

Status

Package Release Status
gst-plugins-bad0.10
Launchpad, Ubuntu, Debian
trusty Needs triage

xenial Ignored
(end of standard support)
bionic Ignored
(end of standard support)
focal Does not exist

jammy Does not exist

lunar Does not exist

upstream Needs triage

mantic Does not exist

gst-plugins-bad1.0
Launchpad, Ubuntu, Debian
trusty Needs triage

xenial Needs triage

bionic Needs triage

upstream Needs triage

focal
Released (1.16.3-0ubuntu1.1)
jammy
Released (1.20.3-0ubuntu1.1)
lunar
Released (1.22.1-1ubuntu1.1)
mantic
Released (1.22.4-1ubuntu1.1)
Patches:
upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/72742dee30cce7bf909639f82de119871566ce39
upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/1edd1c38dcc5d27e7c5649d999ee8278872a16d4 (1.22.6)