]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: e7fc2b6) | patch
gst-ffmpeg: fix for Security Advisory CVE-2013-0858
authorYue Tao <Yue.Tao@windriver.com>
Sun, 27 Apr 2014 11:44:28 +0000 (19:44 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Thu, 29 May 2014 12:42:12 +0000 (13:42 +0100)
commit58aaf7ef101efb046a03e65fb084e9dfe871c648
tree71125623523c0776f5ff7e2c3589e6c70e803988tree | snapshot
parente7fc2b61bc44df58a23d02775847015a52ea8fcbcommit | diff
gst-ffmpeg: fix for Security Advisory CVE-2013-0858

The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before
1.0.4 allows remote attackers to have an unspecified impact via ATRAC3
data with the joint stereo coding mode set and fewer than two channels.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0858

(From OE-Core rev: 0ee8754c973f5eff3ba4d00319a5308888c12b17)

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-atrac3dec-Check-coding-mode-against-channels.patch [new file with mode: 0644] blob
meta/recipes-multimedia/gstreamer/gst-ffmpeg_0.10.13.bb diff | blob | history
Mirror of the official openembedded-core repository