SUSE-SU-2017:1039-1
Advisory lineage Upstream: 4 Downstream: 0
Published: 18 Apr 2017, 08:19
Last modified:04 Feb 2026, 03:15
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
18 Apr 2017, 08:19
Published
Vulnerability first disclosed
04 Feb 2026, 03:15
Last Modified
Vulnerability information updated
Description
Security update for gstreamer-plugins-base This update for gstreamer-plugins-base fixes the following security issues: - A crafted AVI file could have caused a floating point exception leading to DoS (bsc#1024076, CVE-2017-5837, bsc#1024079, CVE-2017-5844) - A crafted AVI file could have caused a stack overflow leading to DoS (bsc#1024047, CVE-2017-5839) - A crafted SAMI subtitle file could have caused an invalid memory access possibly leading to DoS or corruption (bsc#1024041, CVE-2017-5842)
Affected Systems
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Desktop 12 SP2
< 1.8.3-12.11
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Server 12 SP2
< 1.8.3-12.11
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
< 1.8.3-12.11
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2
< 1.8.3-12.11
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Software Development Kit 12 SP2
< 1.8.3-12.11
- suse•gstreamer-plugins-base&distro=SUSE Linux Enterprise Workstation Extension 12 SP2
< 1.8.3-12.11
References (9)
- https://www.suse.com/support/update/announcement/2017/suse-su-20171039-1/
- https://bugzilla.suse.com/1024041
- https://bugzilla.suse.com/1024047
- https://bugzilla.suse.com/1024076
- https://bugzilla.suse.com/1024079
- https://www.suse.com/security/cve/CVE-2017-5837
- https://www.suse.com/security/cve/CVE-2017-5839
- https://www.suse.com/security/cve/CVE-2017-5842
- https://www.suse.com/security/cve/CVE-2017-5844