Security update for gstreamer SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02034-1 Final 1 1 2025-06-20T08:04:51Z current 2025-06-20T08:04:51Z 2025-06-20T08:04:51Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gstreamer This update for gstreamer fixes the following issues: - CVE-2024-47606: Fixed integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes (bsc#1234449) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-2034,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2034,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2034,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-2034,SUSE-SUSE-MicroOS-5.2-2025-2034,SUSE-Storage-7.1-2025-2034 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502034-1/ Link for SUSE-SU-2025:02034-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040412.html E-Mail link for SUSE-SU-2025:02034-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1234449 SUSE Bug 1234449 https://www.suse.com/security/cve/CVE-2024-47606/ SUSE CVE CVE-2024-47606 page SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP3 gstreamer-1.16.3-150200.3.6.1 gstreamer-32bit-1.16.3-150200.3.6.1 gstreamer-64bit-1.16.3-150200.3.6.1 gstreamer-devel-1.16.3-150200.3.6.1 gstreamer-doc-1.16.3-150200.3.6.1 gstreamer-lang-1.16.3-150200.3.6.1 gstreamer-utils-1.16.3-150200.3.6.1 libgstreamer-1_0-0-1.16.3-150200.3.6.1 libgstreamer-1_0-0-32bit-1.16.3-150200.3.6.1 libgstreamer-1_0-0-64bit-1.16.3-150200.3.6.1 typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 gstreamer-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 gstreamer-devel-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 gstreamer-lang-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 gstreamer-utils-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 libgstreamer-1_0-0-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 as a component of SUSE Enterprise Storage 7.1 gstreamer-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS gstreamer-devel-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS gstreamer-lang-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS gstreamer-utils-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libgstreamer-1_0-0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS gstreamer-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Micro 5.2 libgstreamer-1_0-0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Micro 5.2 gstreamer-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS gstreamer-devel-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS gstreamer-lang-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS gstreamer-utils-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libgstreamer-1_0-0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS gstreamer-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 gstreamer-devel-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 gstreamer-lang-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 gstreamer-utils-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libgstreamer-1_0-0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemux_parse_theora_extension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended value when cast to an unsigned integer. This 32-bit negative value is then cast to a 64-bit unsigned integer (0xfffffffffffffffa) in a subsequent call to gst_buffer_new_and_alloc. The function gst_buffer_new_allocate then attempts to allocate memory, eventually calling _sysmem_new_block. The function _sysmem_new_block adds alignment and header size to the (unsigned) size, causing the overflow of the 'slice_size' variable. As a result, only 0x89 bytes are allocated, despite the large input size. When the following memcpy call occurs in gst_buffer_fill, the data from the input file will overwrite the content of the GstMapInfo info structure. Finally, during the call to gst_memory_unmap, the overwritten memory may cause a function pointer hijack, as the mem->allocator->mem_unmap_full function is called with a corrupted pointer. This function pointer overwrite could allow an attacker to alter the execution flow of the program, leading to arbitrary code execution. This vulnerability is fixed in 1.24.10. CVE-2024-47606 SUSE Enterprise Storage 7.1:gstreamer-1.16.3-150200.3.6.1 SUSE Enterprise Storage 7.1:gstreamer-devel-1.16.3-150200.3.6.1 SUSE Enterprise Storage 7.1:gstreamer-lang-1.16.3-150200.3.6.1 SUSE Enterprise Storage 7.1:gstreamer-utils-1.16.3-150200.3.6.1 SUSE Enterprise Storage 7.1:libgstreamer-1_0-0-1.16.3-150200.3.6.1 SUSE Enterprise Storage 7.1:typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gstreamer-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gstreamer-devel-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gstreamer-lang-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gstreamer-utils-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libgstreamer-1_0-0-1.16.3-150200.3.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 SUSE Linux Enterprise Micro 5.2:gstreamer-1.16.3-150200.3.6.1 SUSE Linux Enterprise Micro 5.2:libgstreamer-1_0-0-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:gstreamer-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:gstreamer-devel-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:gstreamer-lang-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:gstreamer-utils-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libgstreamer-1_0-0-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:gstreamer-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:gstreamer-devel-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:gstreamer-lang-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:gstreamer-utils-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libgstreamer-1_0-0-1.16.3-150200.3.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:typelib-1_0-Gst-1_0-1.16.3-150200.3.6.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502034-1/ https://www.suse.com/security/cve/CVE-2024-47606.html CVE-2024-47606 https://bugzilla.suse.com/1234449 SUSE Bug 1234449