mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-27 03:32:12 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4ec84083df77df017eee5738cff03c8fb4a5a216
poky/meta/recipes-multimedia
History
Tanu Kaskinen 4ec84083df libvorbis: CVE-2017-14633 
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability
exists in the function mapping0_forward() in mapping0.c, which may lead
to DoS when operating on a crafted audio file with vorbis_analysis().

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14633

(From OE-Core rev: f398fb04549577922e6265c0969c6d6c35a11e7c)

(From OE-Core rev: a7f1fa651620b98c211459e80e5d9608ce8f1866)

Signed-off-by: Tanu Kaskinen <tanuk@iki.fi>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2018-04-05 15:13:48 +01:00
..
alsa
alsa-lib: allow building ARM thumb again
2016-10-05 10:10:11 +01:00
ffmpeg
ffmpeg: update to 3.1.3
2016-09-03 09:58:39 +01:00
flac
flac: upgrade to 1.3.1
2015-02-08 08:00:29 +00:00
gstreamer
Revert "gst-player: Disable visualizations"
2016-10-05 10:10:11 +01:00
lame
meta: update patch metadata
2016-07-08 09:57:24 +01:00
liba52
package_regex.inc: split sourceforge related entries to their own recipes
2015-12-08 10:20:52 +00:00
libid3tag
libid3tag: use "foreign" automake strictness
2014-07-16 10:31:16 +01:00
libogg
libogg: upgrade to 1.3.2
2014-06-01 14:29:31 +01:00
libomxil
meta: Drop now pointless manual -dbg packaging
2015-12-16 11:56:30 +00:00
libpng
libpng: use SourceForge mirror
2017-10-10 17:27:40 +01:00
libsamplerate
package_regex.inc: split the rest of the entries to their recipes
2015-12-08 10:20:52 +00:00
libsndfile
libsndfile1: 1.0.26 -> 1.0.27
2016-07-26 08:56:27 +01:00
libtheora
package_regex.inc: split the rest of the entries to their recipes
2015-12-08 10:20:52 +00:00
libtiff
tiff: Security fix for CVE-2017-7593
2017-11-21 14:43:54 +00:00
libvorbis
libvorbis: CVE-2017-14633
2018-04-05 15:13:48 +01:00
mpeg2dec
package_regex.inc: split sourceforge related entries to their own recipes
2015-12-08 10:20:52 +00:00
mpg123
mpg123: update to 1.23.6
2016-09-03 09:58:38 +01:00
pulseaudio
pulseaudio: add ${S}/LICENSE to LIC_FILES_CHKSUM
2016-09-16 15:24:03 +01:00
sbc
sbc: upgrade to 1.3
2014-11-20 14:08:08 +00:00
speex
speex: 1.2rc1 -> 1.2rc2
2015-07-16 15:09:15 +01:00
tremor
upstream_tracking.inc: deprecate and move contents to recipes
2015-09-01 11:44:01 +01:00
webp
libwebp: sepcify neon availability for arm
2016-09-09 11:53:36 +01:00
x264
x264: add textrel to INSANE_SKIP
2016-09-22 11:13:24 +01:00