mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-15 19:59:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
22d02d2bb75fec47dbdf708cc5af992c20171ddf
poky/meta/recipes-multimedia
History
Tanu Kaskinen fdeecc9011 libvorbis: CVE-2018-5146 
Prevent out-of-bounds write in codebook decoding. The bug could allow
code execution from a specially crafted Ogg Vorbis file.

References:
https://www.debian.org/security/2018/dsa-4140
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5146

(From OE-Core rev: 1b18cdf6b8bdb00ff5df165b9ac7bc2b10c87d57)

Signed-off-by: Tanu Kaskinen <tanuk@iki.fi>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2018-04-02 17:06:40 +01:00
..
alsa
alsa-utils: Do not hardcode path to /lib/udev
2017-09-11 17:30:28 +01:00
ffmpeg
ffmpeg: backport patches to fix 12 CVEs
2017-10-07 23:20:39 +01:00
flac
flac_1.3.1.bb: set CVE_PRODUCT to libflac
2017-07-24 09:13:31 +01:00
gstreamer
gstreamer1.0-plugins: disable introspection on mips64
2017-12-04 17:24:00 +00:00
lame
lame: revert "lame: fix CVE-2017-13712"
2018-03-26 15:07:11 +01:00
liba52
package_regex.inc: split sourceforge related entries to their own recipes
2015-12-08 10:20:52 +00:00
libid3tag
libid3tag: fix build with gperf 3.1
2017-08-13 09:27:37 +01:00
libogg
libogg: upgrade to 1.3.2
2014-06-01 14:29:31 +01:00
libomxil
meta: Drop now pointless manual -dbg packaging
2015-12-16 11:56:30 +00:00
libpng
libpng: upgrade to 1.6.31
2017-08-09 09:24:16 +01:00
libsamplerate
libsamplerate0_0.1.9.bb: set CVE_PRODUCT to libsamplerate
2017-07-24 09:13:31 +01:00
libsndfile
libsndfile1: Fix CVE-2017-8363
2017-08-18 23:46:38 +01:00
libtheora
package_regex.inc: split the rest of the entries to their recipes
2015-12-08 10:20:52 +00:00
libtiff
tiff: Fix multilib header conflict - tiffconf.h
2018-03-26 15:07:11 +01:00
libvorbis
libvorbis: CVE-2018-5146
2018-04-02 17:06:40 +01:00
mpeg2dec
mpeg2dec: Fix textrels QA errors on arm
2017-07-11 15:57:08 +01:00
mpg123
mpg123: upgrade to 1.25.6
2017-08-18 23:46:38 +01:00
pulseaudio
pulseaudio: Backport a patch to replace use of VLAIS
2017-09-11 17:30:27 +01:00
sbc
sbc: fix license
2017-12-04 17:23:59 +00:00
speex
speex: update SRC_URI
2017-07-06 14:38:15 +01:00
webp
libwebp: update to 0.6.0
2017-03-01 23:27:09 +00:00
x264
selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting
2017-08-16 00:03:13 +01:00