I am not going to touch the code myself but I will post a debdiff if upstream debian updates it in wheezy.
But I still request the security team to look at it because this problem exists in a default install and also could compromise the system by just opening nautilus. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1641700 Title: untrusted code execution using NES music file play using gstreamer NES CPU emulation CESA-2016-0001 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gst-plugins-bad0.10/+bug/1641700/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
