Red Hat Product Errata RHSA-2025:8977 - Security Advisory
Issued:
2025-06-12
Updated:
2025-06-12

RHSA-2025:8977 - Security Advisory

Synopsis

Important: gstreamer1-plugins-bad-free security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for gstreamer1-plugins-bad-free is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer.

Security Fix(es):

  • GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-3887)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x

Fixes

  • BZ - 2367919 - CVE-2025-3887 GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.src.rpm SHA-256: c62c92b472cced180501dc9a3789c9b20483cd743d03de6554213713a6dcb67e
x86_64
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.i686.rpm SHA-256: 3e707322e55f8eba78477f5ab3cd3303eb08a25f347571eb8be0492c85d88b8a
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.x86_64.rpm SHA-256: 233345e96005ee5ba26a21a59b7bff3daec9861787f900ac2132d2d888433eef
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.i686.rpm SHA-256: d4ee0656ecc0f6f942563e1cae47663177b2b37df108e9339180a012c6499b44
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.x86_64.rpm SHA-256: cae1ffded05c3276070726cbd3a57e17e978ccd6f15a8ed1d9902f0c8bcdc5bc
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.i686.rpm SHA-256: 31e5c44ffde444b3519e222b05e650317f4df4e094e64c02eaacdd10201391db
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.x86_64.rpm SHA-256: a266ba78acb04355a0eab7d76d725dd34cbcab510bb1da07e559abbfe0abd06d

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.src.rpm SHA-256: c62c92b472cced180501dc9a3789c9b20483cd743d03de6554213713a6dcb67e
ppc64le
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.ppc64le.rpm SHA-256: 2b338c0395a0f3d36e3f5ab646a109e52d2df534d86aefad5736fbbcadebd381
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.ppc64le.rpm SHA-256: 6bb6df331242066f69c906cabfea8efea374a4ace93fa93fded9e53e41da5ed5
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.ppc64le.rpm SHA-256: c24abbcb8d8a82df9fda3693b164da7feefe4d1026b49665c39a4ef15fa4fca3

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.src.rpm SHA-256: c62c92b472cced180501dc9a3789c9b20483cd743d03de6554213713a6dcb67e
x86_64
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.i686.rpm SHA-256: 3e707322e55f8eba78477f5ab3cd3303eb08a25f347571eb8be0492c85d88b8a
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.x86_64.rpm SHA-256: 233345e96005ee5ba26a21a59b7bff3daec9861787f900ac2132d2d888433eef
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.i686.rpm SHA-256: d4ee0656ecc0f6f942563e1cae47663177b2b37df108e9339180a012c6499b44
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.x86_64.rpm SHA-256: cae1ffded05c3276070726cbd3a57e17e978ccd6f15a8ed1d9902f0c8bcdc5bc
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.i686.rpm SHA-256: 31e5c44ffde444b3519e222b05e650317f4df4e094e64c02eaacdd10201391db
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.x86_64.rpm SHA-256: a266ba78acb04355a0eab7d76d725dd34cbcab510bb1da07e559abbfe0abd06d

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.src.rpm SHA-256: c62c92b472cced180501dc9a3789c9b20483cd743d03de6554213713a6dcb67e
aarch64
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.aarch64.rpm SHA-256: 6c32c83d1181b3562b33b631a0e404d3f6d15e41906a5ab935f415bb872a4544
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.aarch64.rpm SHA-256: e1e60d03f7daca598babdc86dd27bcb81c14f5751ffad198173a046d2e25ec23
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.aarch64.rpm SHA-256: eab97ce29592838db0c192c08a29c73d8a7e2377f8c0a5034ab546aadbf4f31e

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.src.rpm SHA-256: c62c92b472cced180501dc9a3789c9b20483cd743d03de6554213713a6dcb67e
s390x
gstreamer1-plugins-bad-free-1.18.4-8.el9_2.s390x.rpm SHA-256: 42edefd419a6db92ee58fc9938dfea7275a478ee933b5e1c4c9ac45959ae1994
gstreamer1-plugins-bad-free-debuginfo-1.18.4-8.el9_2.s390x.rpm SHA-256: 51b82b5493246d7df565a6020988cbf2854c8a0aa862aae4ea238c22ec0d6218
gstreamer1-plugins-bad-free-debugsource-1.18.4-8.el9_2.s390x.rpm SHA-256: 2132bb70a1e0cbd34157390fe1273ef623d70017dadb36d06de3ccd496cf311d

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.