Security update for gstreamer-plugins-base SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:20507-1 Final 1 1 2025-07-24T11:46:58Z current 2025-07-24T11:46:58Z 2025-07-24T11:46:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gstreamer-plugins-base This update for gstreamer-plugins-base fixes the following issues: - CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser (bsc#1244403) - CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser (bsc#1244404) - CVE-2025-47806: Fixed Stack buffer overflow in SubRip subtitle parser (bsc#1244407) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-Micro-6.0-394 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202520507-1/ Link for SUSE-SU-2025:20507-1 https://lists.suse.com/pipermail/sle-updates/2025-August/041044.html E-Mail link for SUSE-SU-2025:20507-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1244403 SUSE Bug 1244403 https://bugzilla.suse.com/1244404 SUSE Bug 1244404 https://bugzilla.suse.com/1244407 SUSE Bug 1244407 https://www.suse.com/security/cve/CVE-2025-47806/ SUSE CVE CVE-2025-47806 page https://www.suse.com/security/cve/CVE-2025-47807/ SUSE CVE CVE-2025-47807 page https://www.suse.com/security/cve/CVE-2025-47808/ SUSE CVE CVE-2025-47808 page SUSE Linux Micro 6.0 gstreamer-plugins-base-1.22.9-3.1 libgstallocators-1_0-0-1.22.9-3.1 libgstapp-1_0-0-1.22.9-3.1 libgstaudio-1_0-0-1.22.9-3.1 libgstgl-1_0-0-1.22.9-3.1 libgstpbutils-1_0-0-1.22.9-3.1 libgstriff-1_0-0-1.22.9-3.1 libgsttag-1_0-0-1.22.9-3.1 libgstvideo-1_0-0-1.22.9-3.1 gstreamer-plugins-base-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstallocators-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstapp-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstaudio-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstgl-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstpbutils-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstriff-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgsttag-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 libgstvideo-1_0-0-1.22.9-3.1 as a component of SUSE Linux Micro 6.0 unknown CVE-2025-47806 SUSE Linux Micro 6.0:gstreamer-plugins-base-1.22.9-3.1 SUSE Linux Micro 6.0:libgstallocators-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstapp-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstaudio-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstgl-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstpbutils-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstriff-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgsttag-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstvideo-1_0-0-1.22.9-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520507-1/ https://www.suse.com/security/cve/CVE-2025-47806.html CVE-2025-47806 https://bugzilla.suse.com/1244407 SUSE Bug 1244407 unknown CVE-2025-47807 SUSE Linux Micro 6.0:gstreamer-plugins-base-1.22.9-3.1 SUSE Linux Micro 6.0:libgstallocators-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstapp-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstaudio-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstgl-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstpbutils-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstriff-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgsttag-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstvideo-1_0-0-1.22.9-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520507-1/ https://www.suse.com/security/cve/CVE-2025-47807.html CVE-2025-47807 https://bugzilla.suse.com/1244403 SUSE Bug 1244403 unknown CVE-2025-47808 SUSE Linux Micro 6.0:gstreamer-plugins-base-1.22.9-3.1 SUSE Linux Micro 6.0:libgstallocators-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstapp-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstaudio-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstgl-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstpbutils-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstriff-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgsttag-1_0-0-1.22.9-3.1 SUSE Linux Micro 6.0:libgstvideo-1_0-0-1.22.9-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520507-1/ https://www.suse.com/security/cve/CVE-2025-47808.html CVE-2025-47808 https://bugzilla.suse.com/1244404 SUSE Bug 1244404