SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2302

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2302

Security update for gstreamer-plugins-base

Type: security

Severity: moderate

Issued: 2025-07-14

Description:

This update for gstreamer-plugins-base fixes the following issues:

- CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser (bsc#1244404).
- CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser (bsc#1244403).
- CVE-2025-47806: Fixed stack buffer overflow in SubRip subtitle parser (bsc#1244407).

References

CVE: CVE-2025-47808
CVE: CVE-2025-47807
CVE: CVE-2025-47806
Bugzilla: 1244407 VUL-0: CVE-2025-47806: gstreamer-0_10-plugins-base,gstreamer-plugins-base: Stack buffer overflow in SubRip subtitle parser
Bugzilla: 1244404 VUL-0: CVE-2025-47808: gstreamer-0_10-plugins-base,gstreamer-plugins-base: NULL-pointer dereference in TMPlayer subtitle parser
Bugzilla: 1244403 VUL-0: CVE-2025-47807: gstreamer-0_10-plugins-base,gstreamer-plugins-base: NULL-pointer dereference in SubRip subtitle parser

Packages

gstreamer-plugins-base-1.24.0-150600.3.11.1