Security update for gstreamer-plugins-base SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:0065-1 Final 1 1 2025-01-10T14:42:36Z current 2025-01-10T14:42:36Z 2025-01-10T14:42:36Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gstreamer-plugins-base This update for gstreamer-plugins-base fixes the following issues: - CVE-2024-47538: Fixed a stack-buffer overflow in vorbis_handle_identification_packet. (bsc#1234415) - CVE-2024-47835: Fixed a NULL-pointer dereference in LRC subtitle parser. (bsc#1234450) - CVE-2024-47600: Fixed an out-of-bounds read in gst-discoverer-1.0 commandline tool. (bsc#1234453) - CVE-2024-47615: Fixed an out-of-bounds write in Ogg demuxer. (bsc#1234456) - CVE-2024-47541: Fixed an out-of-bounds write in SSA subtitle parser. (bsc#1234459) - CVE-2024-47542: Fixed an ID3v2 parser out-of-bounds read and NULL-pointer dereference. (bsc#1234460) - CVE-2024-47607: Fixed a stack buffer-overflow in Opus decoder. (bsc#1234455) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container containers/open-webui:0-2025-65,SUSE-2025-65,SUSE-SLE-Module-Basesystem-15-SP6-2025-65,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-65,openSUSE-SLE-15.6-2025-65 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ Link for SUSE-SU-2025:0065-1 https://lists.suse.com/pipermail/sle-security-updates/2025-January/020089.html E-Mail link for SUSE-SU-2025:0065-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1234415 SUSE Bug 1234415 https://bugzilla.suse.com/1234450 SUSE Bug 1234450 https://bugzilla.suse.com/1234453 SUSE Bug 1234453 https://bugzilla.suse.com/1234455 SUSE Bug 1234455 https://bugzilla.suse.com/1234456 SUSE Bug 1234456 https://bugzilla.suse.com/1234459 SUSE Bug 1234459 https://bugzilla.suse.com/1234460 SUSE Bug 1234460 https://www.suse.com/security/cve/CVE-2024-47538/ SUSE CVE CVE-2024-47538 page https://www.suse.com/security/cve/CVE-2024-47541/ SUSE CVE CVE-2024-47541 page https://www.suse.com/security/cve/CVE-2024-47542/ SUSE CVE CVE-2024-47542 page https://www.suse.com/security/cve/CVE-2024-47600/ SUSE CVE CVE-2024-47600 page https://www.suse.com/security/cve/CVE-2024-47607/ SUSE CVE CVE-2024-47607 page https://www.suse.com/security/cve/CVE-2024-47615/ SUSE CVE CVE-2024-47615 page https://www.suse.com/security/cve/CVE-2024-47835/ SUSE CVE CVE-2024-47835 page Container containers/open-webui:0 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP6 openSUSE Leap 15.6 gstreamer-plugins-base-1.24.0-150600.3.8.1 libgstallocators-1_0-0-1.24.0-150600.3.8.1 libgstapp-1_0-0-1.24.0-150600.3.8.1 libgstaudio-1_0-0-1.24.0-150600.3.8.1 libgstgl-1_0-0-1.24.0-150600.3.8.1 libgstpbutils-1_0-0-1.24.0-150600.3.8.1 libgstriff-1_0-0-1.24.0-150600.3.8.1 libgsttag-1_0-0-1.24.0-150600.3.8.1 libgstvideo-1_0-0-1.24.0-150600.3.8.1 gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 gstreamer-plugins-base-64bit-1.24.0-150600.3.8.1 gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 gstreamer-plugins-base-devel-64bit-1.24.0-150600.3.8.1 gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 libgstallocators-1_0-0-64bit-1.24.0-150600.3.8.1 libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 libgstapp-1_0-0-64bit-1.24.0-150600.3.8.1 libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 libgstaudio-1_0-0-64bit-1.24.0-150600.3.8.1 libgstfft-1_0-0-1.24.0-150600.3.8.1 libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 libgstfft-1_0-0-64bit-1.24.0-150600.3.8.1 libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 libgstgl-1_0-0-64bit-1.24.0-150600.3.8.1 libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 libgstpbutils-1_0-0-64bit-1.24.0-150600.3.8.1 libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 libgstriff-1_0-0-64bit-1.24.0-150600.3.8.1 libgstrtp-1_0-0-1.24.0-150600.3.8.1 libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 libgstrtp-1_0-0-64bit-1.24.0-150600.3.8.1 libgstrtsp-1_0-0-1.24.0-150600.3.8.1 libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 libgstrtsp-1_0-0-64bit-1.24.0-150600.3.8.1 libgstsdp-1_0-0-1.24.0-150600.3.8.1 libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 libgstsdp-1_0-0-64bit-1.24.0-150600.3.8.1 libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 libgsttag-1_0-0-64bit-1.24.0-150600.3.8.1 libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 libgstvideo-1_0-0-64bit-1.24.0-150600.3.8.1 typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 gstreamer-plugins-base-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstallocators-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstapp-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstaudio-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstgl-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstpbutils-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstriff-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgsttag-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 libgstvideo-1_0-0-1.24.0-150600.3.8.1 as a component of Container containers/open-webui:0 gstreamer-plugins-base-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstallocators-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstapp-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstaudio-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstfft-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstgl-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstpbutils-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstriff-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstrtp-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstrtsp-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstsdp-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgsttag-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstvideo-1_0-0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 gstreamer-plugins-base-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstallocators-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstapp-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstaudio-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstfft-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstgl-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstpbutils-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstriff-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstrtp-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstrtsp-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstsdp-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgsttag-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstvideo-1_0-0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 as a component of openSUSE Leap 15.6 GStreamer is a library for constructing graphs of media-handling components. A stack-buffer overflow has been detected in the `vorbis_handle_identification_packet` function within `gstvorbisdec.c`. The position array is a stack-allocated buffer of size 64. If vd->vi.channels exceeds 64, the for loop will write beyond the boundaries of the position array. The value written will always be `GST_AUDIO_CHANNEL_POSITION_NONE`. This vulnerability allows someone to overwrite the EIP address allocated in the stack. Additionally, this bug can overwrite the `GstAudioInfo` info structure. This vulnerability is fixed in 1.24.10. CVE-2024-47538 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47538.html CVE-2024-47538 https://bugzilla.suse.com/1234415 SUSE Bug 1234415 GStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability has been identified in the gst_ssa_parse_remove_override_codes function of the gstssaparse.c file. This function is responsible for parsing and removing SSA (SubStation Alpha) style override codes, which are enclosed in curly brackets ({}). The issue arises when a closing curly bracket "}" appears before an opening curly bracket "{" in the input string. In this case, memmove() incorrectly duplicates a substring. With each successive loop iteration, the size passed to memmove() becomes progressively larger (strlen(end+1)), leading to a write beyond the allocated memory bounds. This vulnerability is fixed in 1.24.10. CVE-2024-47541 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47541.html CVE-2024-47541 https://bugzilla.suse.com/1234459 SUSE Bug 1234459 GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2_read_synch_uint function, located in id3v2.c. If id3v2_read_synch_uint is called with a null work->hdr.frame_data, the pointer guint8 *data is accessed without validation, resulting in a null pointer dereference. This vulnerability can result in a Denial of Service (DoS) by triggering a segmentation fault (SEGV). This vulnerability is fixed in 1.24.10. CVE-2024-47542 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47542.html CVE-2024-47542 https://bugzilla.suse.com/1234460 SUSE Bug 1234460 GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the format_channel_mask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the function gst_discoverer_audio_info_get_channels may return a guint channels value greater than 64. This causes the for loop to attempt access beyond the bounds of the position array, resulting in an OOB-read when an index greater than 63 is used. This vulnerability can result in reading unintended bytes from the stack. Additionally, the dereference of value->value_nick after the OOB-read can lead to further memory corruption or undefined behavior. This vulnerability is fixed in 1.24.10. CVE-2024-47600 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47600.html CVE-2024-47600 https://bugzilla.suse.com/1234453 SUSE Bug 1234453 GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10. CVE-2024-47607 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47607.html CVE-2024-47607 https://bugzilla.suse.com/1234455 SUSE Bug 1234455 GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function gst_parse_vorbis_setup_packet within vorbis_parse.c. The integer size is read from the input file without proper validation. As a result, size can exceed the fixed size of the pad->vorbis_mode_sizes array (which size is 256). When this happens, the for loop overwrites the entire pad structure with 0s and 1s, affecting adjacent memory as well. This OOB-write can overwrite up to 380 bytes of memory beyond the boundaries of the pad->vorbis_mode_sizes array. This vulnerability is fixed in 1.24.10. CVE-2024-47615 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47615.html CVE-2024-47615 https://bugzilla.suse.com/1234456 SUSE Bug 1234456 GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been detected in the parse_lrc function within gstsubparse.c. The parse_lrc function calls strchr() to find the character ']' in the string line. The pointer returned by this call is then passed to g_strdup(). However, if the string line does not contain the character ']', strchr() returns NULL, and a call to g_strdup(start + 1) leads to a null pointer dereference. This vulnerability is fixed in 1.24.10. CVE-2024-47835 Container containers/open-webui:0:gstreamer-plugins-base-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstallocators-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstapp-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstaudio-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstgl-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstriff-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgsttag-1_0-0-1.24.0-150600.3.8.1 Container containers/open-webui:0:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstapp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstfft-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstgl-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstriff-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgsttag-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-devel-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:gstreamer-plugins-base-lang-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstallocators-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstapp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstaudio-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstfft-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstgl-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstpbutils-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstriff-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstrtsp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstsdp-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgsttag-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:libgstvideo-1_0-0-32bit-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAllocators-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstApp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstAudio-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLEGL-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLWayland-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstGLX11-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstPbutils-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstRtsp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstSdp-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstTag-1_0-1.24.0-150600.3.8.1 openSUSE Leap 15.6:typelib-1_0-GstVideo-1_0-1.24.0-150600.3.8.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250065-1/ https://www.suse.com/security/cve/CVE-2024-47835.html CVE-2024-47835 https://bugzilla.suse.com/1234450 SUSE Bug 1234450