[Git][security-tracker-team/security-tracker][master] Add CVE-2025-47219/gst-plugins-good1.0

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Aug 9 08:53:41 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48ba4b47 by Salvatore Bonaccorso at 2025-08-09T09:52:10+02:00
Add CVE-2025-47219/gst-plugins-good1.0

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -231,7 +231,14 @@ CVE-2025-47807 (In GStreamer through 1.26.1, the subparse plugin's subrip_unesca
 CVE-2025-47806 (In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time f ...)
 	TODO: check
 CVE-2025-47219 (In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak fu ...)
-	TODO: check
+	- gst-plugins-good1.0 1.26.2-1
+	NOTE: https://github.com/atredispartners/advisories/blob/master/2025/ATREDIS-2025-0003.md
+	NOTE: https://gstreamer.freedesktop.org/security/sa-2025-0004.html
+	NOTE: For 1.26.y major refactoring fixing the issue:
+	NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8929
+	NOTE: For older branches:
+	NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/9137
+	NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/b80803943388050cb870c95934fc52feeffb94ac (1.24.13)
 CVE-2025-47188 (A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Serie ...)
 	NOT-FOR-US: Mitel
 CVE-2025-47183 (In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree fu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48ba4b478e04895bfd662a5ac2f600f9b2dbe824

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48ba4b478e04895bfd662a5ac2f600f9b2dbe824
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250809/39a3fc9c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list