mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-01-29 21:08:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

ffmpeg: Correct the CVE ID to fix CVE-2025-22919

Browse Source 
A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows
attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

(From OE-Core rev: bf0ad79c46d8a01aafc91620ddf415749aa8849a)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
Archana Polampalli
2025-03-06 06:59:23 +00:00
committed by Steve Sakoman
parent a7888d9d2f
commit a18a302dba
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch → meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
View File

@@ -10,7 +10,7 @@ Fixes ticket #11385.
Signed-off-by: James Almer <jamrial@gmail.com>
CVE: CVE-2025-25471
CVE: CVE-2025-22919
Upstream-Status: Backport [https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322]

2
meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
View File

@@ -48,7 +48,7 @@ SRC_URI = " \
file://CVE-2024-36619.patch \
file://CVE-2024-35369.patch \
file://CVE-2025-25473.patch \
file://CVE-2025-25471.patch \
file://CVE-2025-22919.patch \
file://CVE-2025-22921.patch \
file://CVE-2025-0518.patch \
"