{"id":"RHSA-2026:6300","summary":"Red Hat Security Advisory: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update","modified":"2026-04-07T10:08:52Z","published":"2026-04-04T10:06:50Z","upstream":["CVE-2026-2920","CVE-2026-2921","CVE-2026-2922","CVE-2026-2923","CVE-2026-3082","CVE-2026-3083","CVE-2026-3085"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:6300"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447490"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447492"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447495"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447496"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447498"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447500"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447503"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6300.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-2920"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-2920"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2920"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/37d7991168a223d0810fd1f4493ec6a8b6a510d3"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-164/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-2921"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-2921"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2921"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/e3a99c35266fc92dd6a18ac5fde028d0cda559e6"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-168/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-2922"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-2922"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2922"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/88df8d2cd063b95a076e8041b47f778a4402f363"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-165/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-2923"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-2923"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2923"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/3b8253f447bcc9831dbf643d2c69b205fedbe086"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-161/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-3082"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-3082"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3082"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7d3c258ed928cf59d126c8ea926b185f046f444c"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-163/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-3083"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-3083"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3083"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d60a94dee3c0a0942c9981491bf83e0de1900fbf"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-166/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-3085"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-3085"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3085"},{"type":"ARTICLE","url":"https://www.zerodayinitiative.com/advisories/ZDI-26-167/"}],"affected":[{"package":{"name":"gstreamer1-plugins-bad-free","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-libs","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base-tools","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-base-tools-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-base-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good-gtk","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good-gtk"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-good-qt-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-good-qt-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-ugly-free","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-ugly-free"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-4.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-ugly-free-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-ugly-free-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-4.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-ugly-free-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/gstreamer1-plugins-ugly-free-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-4.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-debugsource","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-devel","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-libs","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}},{"package":{"name":"gstreamer1-plugins-bad-free-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/gstreamer1-plugins-bad-free-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.22.12-5.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6300.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}