Opened 12 months ago

Closed 11 months ago

Last modified 10 months ago

#18190 closed enhancement (fixed)

gstreamer-1.22.4 gst-plugins-base gst-plugins-good gst-plugins-bad gst-plugins-ugly gst-libav gstreamer-vaapi

Reported by: Bruce Dubbs Owned by: Douglas R. Reno
Priority: elevated Milestone: 12.0
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (7)

comment:1 by Xi Ruoyao, 12 months ago

1.22.4

The fourth 1.22 bug-fix release (1.22.4) was released on 20 June 2023.

This release only contains bugfixes and security fixes and it should be safe to update from 1.22.x.

Highlighted bugfixes in 1.22.4

  • Security fixes for flacparse, dvdspu, and subparse
  • d3d11videosink: Fix error on pause and play
  • decklink: Correctly handle SDK strings on macOS and free strings after usage on Linux
  • filesink: Fix buffered mode writing of buffer lists and buffers with multiple memories
  • gldownload: handle passthrough without a critical
  • h265parse: Fix framerate handling regression
  • oggdemux: vp8 fixes
  • mp4mux, qtmux, qtdemux: Opus audio mapping fixes
  • pngdec: Fix wrong colours output from 16bit RGB images
  • ptp clock: Work around ptpd bug in default configuration
  • srtpdec: fix critical warnings on shutdown
  • v4l2src: fix support for bayer format
  • v4l2videoenc: support force-keyframe event in v4l2 encoder
  • vtenc: apply DTS offset to ensure DTS <= PTS
  • gst-python: allow more functions to be called before gst_init()
  • cerbero: fix vaapi variant; add qt6 build on windows; ensure errors on unguarded use of new APIs, require macOS 10.13
  • packages: ship codecalpha, rtponvif, dvbsubenc, switchbin, videosignal plugins; fix pango crash on 32-bit windows
  • various bug fixes, memory leak fixes, and other stability and reliability improvements

gstreamer

  • filesink: Fix buffered mode writing of buffer lists and buffers with multiple memories
  • basesink: Clear EOS flag on STREAM-START event
  • typefindhelper: downgrade bogus error level debug log message
  • ptp: Correctly parse clock ID from the commandline parameters in the helper
  • ptp: Work around bug in ptpd in default configuration

gst-plugins-base

  • alsasink: Fix stall for transition from PAUSED to READY with USB speakerphone.
  • appsink: unref buffer in prev sample early so buffers from v4l2 can be released properly
  • basetextoverlay: Fix typo in "text-y" property description
  • gldownload: handle passthrough without a critical
  • glfilter: add parent meta to output buffer for input buffer
  • oggdemux: vp8: Push headers downstream and detect keyframe packets
  • opus: Fix potential crash when getting unexpected channel position
  • streamsynchronizer: reset eos on STREAM_START
  • subparse: Look for the closing > of a tag after the opening <
  • video: convertframe: Add D3D11 specific conversion path
  • videometa: Only validate the alignment only when it contains some info
  • video-blend: Fix linking error with C++

gst-plugins-good

  • flacparse: Avoid integer overflow in available data check for image tags
  • flvmux: use the correct timestamp to calculate wait times
  • isomp4: Fix (E)AC-3 channel count handling
  • jpegdec: fixes related to interlaced jpeg
  • pngdec: Fix wrong colours output from 16bit RGB images
  • qtmux, qtdemux: fix byte order for opus extension
  • rtspsrc: Do not try send dropped get/set parameter
  • qt5, qt6: Add more meson options and eliminate all automagic
  • qt: glrenderer: don't attempt to use QWindow from non-Qt main thread
  • qml6glsink: Support building on win32
  • v4l2src: fix support for bayer format
  • v4l2: Change to query only up to V4L2_CID_PRIVATE_BASE+V4L2_CID_MAX_CTRLS
  • v4l2videodec: treat MPEG-1 format as MPEG-2
  • v4l2videoenc: support force keyframe event in v4l2 encoder
  • tests: rtpbin_buffer_list: fix possible unaligned write/read on 32-bit ARM

gst-plugins-bad

  • asfmux: fix possible unaligned write on 32-bit ARM
  • d3d11videosink: Fix error on pause and play
  • d3dvideosink: Fix navigation event leak
  • decklink: Correctly handle SDK strings on macOS and free strings after usage on Linux
  • dvdspu: Make sure enough data is allocated for the available data
  • fdkaacdec: Support up to 5 rear channels
  • h265parse: Fix framerate handling
  • kmssink: Add STM32 LTDC and NXP i.MX8M Plus LCDIFv3 auto-detection
  • sdpdemux: ensure that only one srcpad is created per stream
  • srtpdec: fix critical warnings on shutdown
  • testsrcbin: Remove spurious caps unref
  • va: map the mbbrc to correct enum value in get_property()
  • vtenc: apply DTS offset to ensure DTS <= PTS
  • vtdec: time glitches on h264 playback
  • waylandsink: Emit "map" signal boarder surface is ready

gst-plugins-ugly

  • No changes

gst-libav

  • No changes

gst-rtsp-server

  • No changes

gstreamer-vaapi

  • vaapidecodebin: don't load vaapipostproc if not available

comment:2 by Douglas R. Reno, 12 months ago

Priority: normalelevated

Moving to elevated for security fixes

comment:3 by Douglas R. Reno, 11 months ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:4 by Douglas R. Reno, 11 months ago

Security Advisory #1: 

Security Advisory 2023-0002 (ZDI-CAN-20968)
Summary 	Heap overwrite in subtitle parsing
Date 	2023-06-20 18:00
Affected Versions 	GStreamer gst-plugins-base 1.x < 1.22.4, 0.10.x
ID 	GStreamer-SA-2023-0002
	ZDI-CAN-20968

Details
Heap-based buffer overflow in the subparse subtitle parser when handling certain SRT 
subtitle files in GStreamer versions before 1.22.4.

Impact
It is possible for a malicious third party to trigger a crash in the application, and 
possibly also effect code execution through heap manipulation.

Security Advisory #2: 

Security Advisory 2023-0001 (ZDI-CAN-20775)
Summary 	Integer overflow leading to heap overwrite in FLAC image tag handling
Date 	2023-06-20 18:00
Affected Versions 	GStreamer gst-plugins-good 1.x < 1.22.4, 0.10.x
ID 	GStreamer-SA-2023-0001
	ZDI-CAN-20775

Details
Heap-based buffer overflow in the FLAC parser when handling malformed image tags in 
GStreamer versions before 1.22.4.

Impact
It is possible for a malicious third party to trigger a crash in the application, and 
possibly also effect code execution through heap manipulation.

Security Advisory #3: 

Security Advisory 2023-0003 (ZDI-CAN-20994)
Summary 	Heap overwrite in PGS subtitle overlay decoder
Date 	2023-06-20 18:00
Affected Versions 	GStreamer gst-plugins-good 1.x < 1.22.4, 0.10.x
ID 	GStreamer-SA-2023-0003
	ZDI-CAN-20994

Details
Heap-based buffer overflow in the PGS blu-ray subtitle decoder when handling certain 
files in GStreamer versions before 1.22.4.

Impact
It is possible for a malicious third party to trigger a crash in the application, and 
possibly also effect code execution through heap manipulation.

comment:5 by Douglas R. Reno, 11 months ago

Resolution: fixed
Status: assignedclosed

Fixed at 4edc4fbebb77222c97e83bae53f341e4c0482e57

comment:6 by Douglas R. Reno, 11 months ago

SA-11.3-054 issued

comment:7 by Bruce Dubbs, 10 months ago

Milestone: 11.412.0

Milestone renamed

Note: See TracTickets for help on using tickets.