mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-25 01:02:22 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2a642aa2b1b96bd84e650a7c3ebade4d2d7c3863
poky/meta/recipes-multimedia
History
Narpat Mali 2a642aa2b1 ffmpeg: fix for CVE-2022-3964 
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file
libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument y_size
leads to out-of-bounds read. It is possible to initiate the attack remotely. The name of the patch is
92f9b28ed84a77138105475beba16c146bdaf984. It is recommended to apply a patch to fix this issue. The associated
identifier of this vulnerability is VDB-213543.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-3964

Upstream Fix:
92f9b28ed8

(From OE-Core rev: 4595f85e7ce867d68ca9d6a6e3ad2544565be3cc)

Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2022-11-27 23:54:50 +00:00
..
alsa
alsa-lib: upgrade 1.2.7.2 -> 1.2.8
2022-11-08 22:47:16 +00:00
ffmpeg
ffmpeg: fix for CVE-2022-3964
2022-11-27 23:54:50 +00:00
flac
flac: update 1.4.0 -> 1.4.2
2022-11-22 12:26:46 +00:00
gstreamer
gstreamer1.0: upgrade 1.20.3 -> 1.20.4
2022-11-08 22:47:17 +00:00
lame
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
liba52
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libogg
libogg: upgrade 1.3.4 -> 1.3.5
2021-06-12 22:54:14 +01:00
libomxil
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpng
libpng: upgrade 1.6.37 -> 1.6.38
2022-09-20 23:17:53 +01:00
libsamplerate
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
libsndfile
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
libtheora
libtheora: Clarify BSD license variant
2019-10-15 14:16:11 +01:00
libtiff
tiff: fix a typo for CVE-2022-2953.patch
2022-10-28 15:46:32 +01:00
libvorbis
meta: fix some unresponsive homepages and bugtracker links
2020-10-30 13:22:48 +00:00
mpeg2dec
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
mpg123
mpg123: upgrade 1.30.2 -> 1.31.1
2022-11-08 22:47:16 +00:00
pulseaudio
pulseaudio: add m4-native to DEPENDS
2022-07-16 07:40:33 +01:00
sbc
sbc: upgrade 1.5 -> 2.0
2022-06-22 22:40:28 +01:00
speex
speex: upgrade 1.2.0 -> 1.2.1
2022-07-01 11:31:42 +01:00
webp
libwebp: upgrade 1.2.3 -> 1.2.4
2022-08-21 22:51:42 +01:00
x264
x264: upgrade to latest revision
2022-06-22 22:40:28 +01:00