Bug 14073

Summary:	[CVE21] gstreamer 1.19.1 CVEs
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Vladimir Potapov <v.potapov>
Component:	Preinstalled software in the ISO	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	critical
Priority:	Highest	CC:	a.proklov, pastordidi
Version:	All	Flags:	v.potapov: qa_verified+ v.potapov: secteam_verified? a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
URL:	CVE-2022-2122,CVE-2022-1923,CVE-2022-1925,CVE-2022-1924,CVE-2022-1922,CVE-2022-1921,CVE-2022-1920
Whiteboard:
Platform:	---	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Vladimir Potapov 2023-11-30 17:00:44 MSK

https://nvd.nist.gov/vuln/detail/CVE-2022-2122 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1923 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1925 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1924 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1922 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1921 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-1920 Base Score: 7.8 HIGH

Comment 1 Aleksandr Proklov 2023-12-01 06:14:08 MSK

уязвимости закрыты патчами

gstreamer1.0-plugins-good	1.19.1-4

https://abf.io/build_lists/4849751
https://abf.io/build_lists/4849752 х64
https://abf.io/build_lists/4849753
https://abf.io/build_lists/4849754
https://abf.io/build_lists/4849755

Comment 2 Dmitry Postnikov 2023-12-04 20:49:03 MSK

*****************************
Обновление отослано в Тестинг

Comment 3 Vladimir Potapov 2023-12-13 18:08:31 MSK

gstreamer1.0-plugins-good-1.19.1-4
https://abf.io/build_lists/4849751
https://abf.io/build_lists/4849752 х64
https://abf.io/build_lists/4849753
https://abf.io/build_lists/4849754
https://abf.io/build_lists/4849755
************************ Advisory **********************
CVEs closed by patches
********************************************************
QA Verified