An out-of-bounds read leading to null pointer dereference vulnerability in mpegts parser in _parse_pat was found. Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=775120 Upstream patch: https://github.com/GStreamer/gst-plugins-bad/commit/7b12593cceaa0726d7fc370a7556a8e773ccf318 CVE assignment: http://seclists.org/oss-sec/2016/q4/589
Created mingw-gstreamer1-plugins-bad-free tracking bugs for this issue: Affects: fedora-all [bug 1401948]
Created gstreamer1-plugins-bad-free tracking bugs for this issue: Affects: fedora-all [bug 1401946]
Created gstreamer-plugins-bad-free tracking bugs for this issue: Affects: fedora-all [bug 1401945]
Created mingw-gstreamer-plugins-bad-free tracking bugs for this issue: Affects: fedora-all [bug 1401947]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:0021 https://rhn.redhat.com/errata/RHSA-2017-0021.html