"During a source code audit, Theori discovered a stack buffer overflow
in the h264parse module which is part of gstreamer-plugins-bad 1.x.
The vulnerable code path can be triggered when gstreamer parses any
attacker-controlled H.264 content. This flaw could lead to remote code
1.16.3 includes the fix.
Thanks for the report, beat me to it.
(We use fixed versions within Gentoo in the summary.)
(In reply to Sam James from comment #1)
> Thanks for the report, beat me to it.
> (We use fixed versions within Gentoo in the summary.)
Thanks! Doh, I meant to <, not <=. 1.16.3 is indeed fixed.
*** Bug 767187 has been marked as a duplicate of this bug. ***
all arches done