Security update for gstreamer-plugins-base SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02472-1 Final 1 1 2025-07-23T11:18:56Z current 2025-07-23T11:18:56Z 2025-07-23T11:18:56Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gstreamer-plugins-base This update for gstreamer-plugins-base fixes the following issues: - CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser (bsc#1244404). - CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser (bsc#1244403). - CVE-2025-47806: Fixed stack buffer overflow in SubRip subtitle parser (bsc#1244407). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-2472,SUSE-SLE-Micro-5.3-2025-2472,SUSE-SLE-Micro-5.4-2025-2472 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502472-1/ Link for SUSE-SU-2025:02472-1 https://lists.suse.com/pipermail/sle-updates/2025-July/040870.html E-Mail link for SUSE-SU-2025:02472-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1244403 SUSE Bug 1244403 https://bugzilla.suse.com/1244404 SUSE Bug 1244404 https://bugzilla.suse.com/1244407 SUSE Bug 1244407 https://www.suse.com/security/cve/CVE-2025-47806/ SUSE CVE CVE-2025-47806 page https://www.suse.com/security/cve/CVE-2025-47807/ SUSE CVE CVE-2025-47807 page https://www.suse.com/security/cve/CVE-2025-47808/ SUSE CVE CVE-2025-47808 page SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 gstreamer-plugins-base-1.20.1-150400.3.14.1 gstreamer-plugins-base-32bit-1.20.1-150400.3.14.1 gstreamer-plugins-base-64bit-1.20.1-150400.3.14.1 gstreamer-plugins-base-devel-1.20.1-150400.3.14.1 gstreamer-plugins-base-devel-32bit-1.20.1-150400.3.14.1 gstreamer-plugins-base-devel-64bit-1.20.1-150400.3.14.1 gstreamer-plugins-base-lang-1.20.1-150400.3.14.1 libgstallocators-1_0-0-1.20.1-150400.3.14.1 libgstallocators-1_0-0-32bit-1.20.1-150400.3.14.1 libgstallocators-1_0-0-64bit-1.20.1-150400.3.14.1 libgstapp-1_0-0-1.20.1-150400.3.14.1 libgstapp-1_0-0-32bit-1.20.1-150400.3.14.1 libgstapp-1_0-0-64bit-1.20.1-150400.3.14.1 libgstaudio-1_0-0-1.20.1-150400.3.14.1 libgstaudio-1_0-0-32bit-1.20.1-150400.3.14.1 libgstaudio-1_0-0-64bit-1.20.1-150400.3.14.1 libgstfft-1_0-0-1.20.1-150400.3.14.1 libgstfft-1_0-0-32bit-1.20.1-150400.3.14.1 libgstfft-1_0-0-64bit-1.20.1-150400.3.14.1 libgstgl-1_0-0-1.20.1-150400.3.14.1 libgstgl-1_0-0-32bit-1.20.1-150400.3.14.1 libgstgl-1_0-0-64bit-1.20.1-150400.3.14.1 libgstpbutils-1_0-0-1.20.1-150400.3.14.1 libgstpbutils-1_0-0-32bit-1.20.1-150400.3.14.1 libgstpbutils-1_0-0-64bit-1.20.1-150400.3.14.1 libgstriff-1_0-0-1.20.1-150400.3.14.1 libgstriff-1_0-0-32bit-1.20.1-150400.3.14.1 libgstriff-1_0-0-64bit-1.20.1-150400.3.14.1 libgstrtp-1_0-0-1.20.1-150400.3.14.1 libgstrtp-1_0-0-32bit-1.20.1-150400.3.14.1 libgstrtp-1_0-0-64bit-1.20.1-150400.3.14.1 libgstrtsp-1_0-0-1.20.1-150400.3.14.1 libgstrtsp-1_0-0-32bit-1.20.1-150400.3.14.1 libgstrtsp-1_0-0-64bit-1.20.1-150400.3.14.1 libgstsdp-1_0-0-1.20.1-150400.3.14.1 libgstsdp-1_0-0-32bit-1.20.1-150400.3.14.1 libgstsdp-1_0-0-64bit-1.20.1-150400.3.14.1 libgsttag-1_0-0-1.20.1-150400.3.14.1 libgsttag-1_0-0-32bit-1.20.1-150400.3.14.1 libgsttag-1_0-0-64bit-1.20.1-150400.3.14.1 libgstvideo-1_0-0-1.20.1-150400.3.14.1 libgstvideo-1_0-0-32bit-1.20.1-150400.3.14.1 libgstvideo-1_0-0-64bit-1.20.1-150400.3.14.1 typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstApp-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstAudio-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstGL-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstRtp-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstSdp-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstTag-1_0-1.20.1-150400.3.14.1 typelib-1_0-GstVideo-1_0-1.20.1-150400.3.14.1 gstreamer-plugins-base-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstallocators-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstapp-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstaudio-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstgl-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstpbutils-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstriff-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgsttag-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 libgstvideo-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.3 gstreamer-plugins-base-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstallocators-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstapp-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstaudio-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstgl-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstpbutils-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstriff-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgsttag-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 libgstvideo-1_0-0-1.20.1-150400.3.14.1 as a component of SUSE Linux Enterprise Micro 5.4 unknown CVE-2025-47806 SUSE Linux Enterprise Micro 5.3:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstvideo-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstvideo-1_0-0-1.20.1-150400.3.14.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502472-1/ https://www.suse.com/security/cve/CVE-2025-47806.html CVE-2025-47806 https://bugzilla.suse.com/1244407 SUSE Bug 1244407 unknown CVE-2025-47807 SUSE Linux Enterprise Micro 5.3:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstvideo-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstvideo-1_0-0-1.20.1-150400.3.14.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502472-1/ https://www.suse.com/security/cve/CVE-2025-47807.html CVE-2025-47807 https://bugzilla.suse.com/1244403 SUSE Bug 1244403 unknown CVE-2025-47808 SUSE Linux Enterprise Micro 5.3:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.3:libgstvideo-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:gstreamer-plugins-base-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstallocators-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstapp-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstaudio-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstgl-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstpbutils-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstriff-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgsttag-1_0-0-1.20.1-150400.3.14.1 SUSE Linux Enterprise Micro 5.4:libgstvideo-1_0-0-1.20.1-150400.3.14.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502472-1/ https://www.suse.com/security/cve/CVE-2025-47808.html CVE-2025-47808 https://bugzilla.suse.com/1244404 SUSE Bug 1244404