mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-08 18:02:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
768cd2beff0949bbe1bd07f2dc0d46ba105ca875
poky/meta
History
Jackie Huang 768cd2beff libsndfile1: Fix CVE-2017-8361 and CVE-2017-8365 
Backport the patch to fix two CVEs:

CVE-2017-8361:
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows
remote attackers to cause a denial of service (buffer overflow and
application crash) or possibly have unspecified other impact via a
crafted audio file.

CVE-2017-8365:
The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote
attackers to cause a denial of service (buffer over-read and application
crash) via a crafted audio file.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2017-8361
https://nvd.nist.gov/vuln/detail/CVE-2017-8365

(From OE-Core rev: d92877ade8fd4dd9b548c6b664bf4357a1f9428a)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-18 23:46:37 +01:00
..
classes
rootfs-postcommands.bbclass: Prevent linking testdata to itself
2017-08-18 23:46:37 +01:00
conf
bitbake.conf: add VOLATILE_LOG_DIR variable
2017-08-18 10:40:26 +01:00
files
package.bbclass: support persistent /var/log
2017-08-18 10:40:26 +01:00
lib
copy_buildsystem: include layer tree during build structure creation
2017-08-18 23:46:37 +01:00
recipes-bsp
systemd-boot: Move adjacent to systemd
2017-08-18 23:46:37 +01:00
recipes-connectivity
connman: Remove musl patch that's no longer needed
2017-08-18 10:40:27 +01:00
recipes-core
systemd-boot: Move adjacent to systemd
2017-08-18 23:46:37 +01:00
recipes-devtools
elfutils: 0.168 -> 0.170
2017-08-18 10:40:26 +01:00
recipes-extended
wget: Security fix CVE-2017-6508
2017-08-18 23:46:37 +01:00
recipes-gnome
gdk-pixbuf: Upgrade 2.36.6 -> 2.36.8
2017-08-17 00:21:14 +01:00
recipes-graphics
xserver-xorg: Fix CVE-2017-10971
2017-08-18 23:46:37 +01:00
recipes-kernel
selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting
2017-08-16 00:03:13 +01:00
recipes-multimedia
libsndfile1: Fix CVE-2017-8361 and CVE-2017-8365
2017-08-18 23:46:37 +01:00
recipes-rt
meta: remove True option to getVar calls
2016-12-16 10:23:23 +00:00
recipes-sato
selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting
2017-08-16 00:03:13 +01:00
recipes-support
gpgme: remove local m4/python.m4
2017-08-18 10:40:27 +01:00
site
site/ix86-common: Drop ac_cv_sizeof_ino_t as it can be incorrect with large file support
2017-08-16 00:03:15 +01:00
COPYING.GPLv2
Fix license notices for OE-Core
2014-01-02 12:58:54 +00:00
COPYING.MIT
recipes.txt
qt4: remove recipes and classes
2016-01-07 13:40:14 +00:00