Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2023-37327

Integer overflow leading to heap overwrite in FLAC image tag handling (CVE-2023-37327)

Source

ALAS2-2023-2154

Amazon Linux 2 Security Advisory: ALAS-2023-2154
Advisory Release Date: 2023-07-20 17:28 Pacific
Advisory Updated Date: 2023-07-25 23:08 Pacific

Severity: Important

References: CVE-2023-37327
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

Integer overflow leading to heap overwrite in FLAC image tag handling (CVE-2023-37327)

Affected Packages:

gstreamer1-plugins-base

Issue Correction:
Run yum update gstreamer1-plugins-base to update your system.

New Packages:

aarch64:
    gstreamer1-plugins-base-1.18.4-5.amzn2.0.3.aarch64
    gstreamer1-plugins-base-tools-1.18.4-5.amzn2.0.3.aarch64
    gstreamer1-plugins-base-devel-1.18.4-5.amzn2.0.3.aarch64
    gstreamer1-plugins-base-debuginfo-1.18.4-5.amzn2.0.3.aarch64

i686:
    gstreamer1-plugins-base-1.18.4-5.amzn2.0.3.i686
    gstreamer1-plugins-base-tools-1.18.4-5.amzn2.0.3.i686
    gstreamer1-plugins-base-devel-1.18.4-5.amzn2.0.3.i686
    gstreamer1-plugins-base-debuginfo-1.18.4-5.amzn2.0.3.i686

src:
    gstreamer1-plugins-base-1.18.4-5.amzn2.0.3.src

x86_64:
    gstreamer1-plugins-base-1.18.4-5.amzn2.0.3.x86_64
    gstreamer1-plugins-base-tools-1.18.4-5.amzn2.0.3.x86_64
    gstreamer1-plugins-base-devel-1.18.4-5.amzn2.0.3.x86_64
    gstreamer1-plugins-base-debuginfo-1.18.4-5.amzn2.0.3.x86_64

Additional References

Red Hat: CVE-2023-37327

Mitre: CVE-2023-37327

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2-2023-2154

ALAS2-2023-2154

Additional References

Vulmon Search

About

Products

Connect