Vulmon
Amazon Linux 2 Security Advisory: ALAS-2023-2000
Advisory Release Date: 2023-03-17 16:35 Pacific
Advisory Updated Date: 2023-03-21 23:25 Pacific
Severity:
Medium
Issue Overview:
A flaw was found in gstreamer-plugins-base where an out-of-bounds read when handling certain ID3v2 tags is possible. The highest threat from this vulnerability is to system availability. (CVE-2021-3522)
Affected Packages:
gstreamer1-plugins-base
Issue Correction:
Run yum update gstreamer1-plugins-base to update your system.
New Packages:
aarch64:
gstreamer1-plugins-base-1.10.4-2.amzn2.0.3.aarch64
gstreamer1-plugins-base-tools-1.10.4-2.amzn2.0.3.aarch64
gstreamer1-plugins-base-devel-1.10.4-2.amzn2.0.3.aarch64
gstreamer1-plugins-base-debuginfo-1.10.4-2.amzn2.0.3.aarch64
i686:
gstreamer1-plugins-base-1.10.4-2.amzn2.0.3.i686
gstreamer1-plugins-base-tools-1.10.4-2.amzn2.0.3.i686
gstreamer1-plugins-base-devel-1.10.4-2.amzn2.0.3.i686
gstreamer1-plugins-base-debuginfo-1.10.4-2.amzn2.0.3.i686
noarch:
gstreamer1-plugins-base-devel-docs-1.10.4-2.amzn2.0.3.noarch
src:
gstreamer1-plugins-base-1.10.4-2.amzn2.0.3.src
x86_64:
gstreamer1-plugins-base-1.10.4-2.amzn2.0.3.x86_64
gstreamer1-plugins-base-tools-1.10.4-2.amzn2.0.3.x86_64
gstreamer1-plugins-base-devel-1.10.4-2.amzn2.0.3.x86_64
gstreamer1-plugins-base-debuginfo-1.10.4-2.amzn2.0.3.x86_64