INFSA-2025:8184: gstreamer1-plugins-bad-free security update
Information about definition
Identificator: INFSA-2025:8184
Type: security
Release date: 2025-07-15 19:48:30 UTC
Information about package
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer.
Vulnerabilities description
- CVE-2025-3887
A flaw was found in GStreamer H265 Codec Parsing. This vulnerability allows remote attackers to execute arbitrary code by parsing H265 slice headers.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-3887
|
no information | 8.8 | no information |
Updated packages