mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-24 21:32:12 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
d86323342e01332d40e96a4f4fa059ec0c85b200
poky/meta/recipes-multimedia
History
Ankur Tyagi f7363369bf tiff: ignore CVE-2025-61143, CVE-2025-61144 and CVE-2025-61145 
These CVEs are for tools which were removed in v4.6.0[1]

[1]eab89a627f

Details:
https://nvd.nist.gov/vuln/detail/CVE-2025-61143
https://nvd.nist.gov/vuln/detail/CVE-2025-61144
https://nvd.nist.gov/vuln/detail/CVE-2025-61145

(From OE-Core rev: e5ec16fbe4ce402b92107d2491c4e08fa2432f1a)

Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
[YC: NVD patches for these CVEs only modify the tools which are not in
the tarball we use]
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
2026-03-25 17:34:13 +00:00
..
alsa
alsa-lib: patch CVE-2026-25068
2026-02-27 17:45:07 +00:00
ffmpeg
ffmpeg: set status for CVE-2025-12343
2026-03-16 10:22:06 +00:00
flac
flac: fix buildpaths warnings
2024-07-12 05:47:20 -07:00
gstreamer
gstreamer1.0-plugins-bad: fix buffer allocation fail for v4l2codecs
2025-11-03 07:17:02 -08:00
lame
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
liba52
liba52: fix do_fetch error
2024-10-30 08:30:00 -07:00
libogg
libogg: upgrade 1.3.4 -> 1.3.5
2021-06-12 22:54:14 +01:00
libomxil
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpng
libpng: patch CVE-2026-25646
2026-02-27 17:45:06 +00:00
libsamplerate
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
libsndfile
libsndfile1: patch CVE-2025-56226
2026-02-27 17:45:06 +00:00
libtheora
libtheora: mark CVE-2024-56431 as not vulnerable yet
2026-02-27 17:45:07 +00:00
libtiff
tiff: ignore CVE-2025-61143, CVE-2025-61144 and CVE-2025-61145
2026-03-25 17:34:13 +00:00
libvorbis
vorbis: mark patch as Inactive-Upstream
2024-07-17 05:36:14 -07:00
mpeg2dec
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
mpg123
mpg123: upgrade 1.32.6 -> 1.32.10
2025-03-19 07:25:56 -07:00
pulseaudio
pulseaudio: ignore CVE-2024-11586
2025-10-13 12:42:58 -07:00
sbc
sbc: upgrade 1.5 -> 2.0
2022-06-22 22:40:28 +01:00
speex
speexdsp: enable native variant
2024-01-07 12:24:57 +00:00
webp
libwebp: upgrade to 1.3.2
2023-09-20 08:57:27 +01:00
x264
recipes/classes/scripts: Drop SRCPV usage in OE-Core
2023-08-24 16:50:24 +01:00