code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	Yue Tao <Yue.Tao@windriver.com>
	Sun, 27 Apr 2014 03:56:19 +0000 (11:56 +0800)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 29 May 2014 12:42:12 +0000 (13:42 +0100)
commit	8229523ea86e9545cc0ee9e34af12a2f84d0809e
tree	79c0d7dba79e000cb20688592aab2882e805d062	tree \| snapshot
parent	5898f20bb2f38a91b2dd1b4cc4798fd960331a14	commit \| diff

gst-ffmpeg: fix for Security Advisory CVE-2013-0868

libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers
to have an unspecified impact via crafted Huffyuv data, related to an
out-of-bounds write and (1) unchecked return codes from the init_vlc
function and (2) len==0 cases.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0868

(From OE-Core rev: 29dcc2c8e834cf43e415eedefb8fce9667b3aa40)

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-huffyuvdec-Check-init_vlc-return-codes.patch	[new file with mode: 0644]	blob
meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-huffyuvdec-Skip-len-0-cases.patch	[new file with mode: 0644]	blob
meta/recipes-multimedia/gstreamer/gst-ffmpeg_0.10.13.bb		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom