Red Hat Product Errata RHSA-2025:8976 - Security Advisory
Issued:
2025-06-12
Updated:
2025-06-12

RHSA-2025:8976 - Security Advisory

Synopsis

Important: gstreamer1-plugins-bad-free security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for gstreamer1-plugins-bad-free is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer.

Security Fix(es):

  • GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-3887)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2367919 - CVE-2025-3887 GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.src.rpm SHA-256: 57a9d27999e885ef3c16a6e72add3b5d7424a10e790b5e4ad52c6a43e5477b7c
x86_64
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.i686.rpm SHA-256: ccfc36a70db15d1796f844d6f19b2f7f30530b2b8a2edbe59756e54cd3beed73
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.x86_64.rpm SHA-256: 763287747bd8de0a90a57bfad3bb3fc072591e063618cf1c3500b7ac18641314
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.i686.rpm SHA-256: f22f1309ceb26141d5a751dcac5c69f248ca6d4fb7088e5308d0d32ef13f1392
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.x86_64.rpm SHA-256: 6b3e5c1dcf8ccca89b3fb58eeb90c41e5be1b05d3fa03b2c985676f15b248ec0
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.i686.rpm SHA-256: 916ac828f2da23da2824f753b5618ec62dfb73f03d9d029c5d0ac3bca476b131
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.x86_64.rpm SHA-256: 8c7986cc49fd31acbfd7050b70cd11e028e25e88e8133a0e609681855ec88136

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.src.rpm SHA-256: 57a9d27999e885ef3c16a6e72add3b5d7424a10e790b5e4ad52c6a43e5477b7c
x86_64
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.i686.rpm SHA-256: ccfc36a70db15d1796f844d6f19b2f7f30530b2b8a2edbe59756e54cd3beed73
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.x86_64.rpm SHA-256: 763287747bd8de0a90a57bfad3bb3fc072591e063618cf1c3500b7ac18641314
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.i686.rpm SHA-256: f22f1309ceb26141d5a751dcac5c69f248ca6d4fb7088e5308d0d32ef13f1392
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.x86_64.rpm SHA-256: 6b3e5c1dcf8ccca89b3fb58eeb90c41e5be1b05d3fa03b2c985676f15b248ec0
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.i686.rpm SHA-256: 916ac828f2da23da2824f753b5618ec62dfb73f03d9d029c5d0ac3bca476b131
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.x86_64.rpm SHA-256: 8c7986cc49fd31acbfd7050b70cd11e028e25e88e8133a0e609681855ec88136

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.src.rpm SHA-256: 57a9d27999e885ef3c16a6e72add3b5d7424a10e790b5e4ad52c6a43e5477b7c
ppc64le
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.ppc64le.rpm SHA-256: 06f4fa39ca5d4fe85100b66dd6ecb3259f675ad4b1276000782a3863d45d8724
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.ppc64le.rpm SHA-256: 14efe5db1d0facf3b797830d54c3920572502a89eaaae80da625d66d14034444
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.ppc64le.rpm SHA-256: 45b9c9235668237e8d958564e5bb3d373a0b6570a6a8a381658e9e3018e73c58

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.src.rpm SHA-256: 57a9d27999e885ef3c16a6e72add3b5d7424a10e790b5e4ad52c6a43e5477b7c
x86_64
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.i686.rpm SHA-256: ccfc36a70db15d1796f844d6f19b2f7f30530b2b8a2edbe59756e54cd3beed73
gstreamer1-plugins-bad-free-1.16.1-3.el8_8.x86_64.rpm SHA-256: 763287747bd8de0a90a57bfad3bb3fc072591e063618cf1c3500b7ac18641314
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.i686.rpm SHA-256: f22f1309ceb26141d5a751dcac5c69f248ca6d4fb7088e5308d0d32ef13f1392
gstreamer1-plugins-bad-free-debuginfo-1.16.1-3.el8_8.x86_64.rpm SHA-256: 6b3e5c1dcf8ccca89b3fb58eeb90c41e5be1b05d3fa03b2c985676f15b248ec0
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.i686.rpm SHA-256: 916ac828f2da23da2824f753b5618ec62dfb73f03d9d029c5d0ac3bca476b131
gstreamer1-plugins-bad-free-debugsource-1.16.1-3.el8_8.x86_64.rpm SHA-256: 8c7986cc49fd31acbfd7050b70cd11e028e25e88e8133a0e609681855ec88136

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.