Heap-based buffer overflow in the FLAC parser when handling malformed image tags in GStreamer versions before 1.22.4 / 1.20.7. https://gstreamer.freedesktop.org/security/sa-2023-0001.html
Upstream Commits: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4894.patch https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/bdc8021c73c16c49d594579c606a4f4771a2670e https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7bcd791fabe03b9ab1c72f494fc86cd0c06c3556
Created gstreamer1-plugins-good tracking bugs for this issue: Affects: fedora-all [bug 2254679] Created mingw-gstreamer1-plugins-good tracking bugs for this issue: Affects: fedora-all [bug 2254680]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2303 https://access.redhat.com/errata/RHSA-2024:2303
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:3089 https://access.redhat.com/errata/RHSA-2024:3089