taglib: Security fix CVE-2018-11439 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yi Zhao <yi.zhao@windriver.com>	2018-09-07 08:22:05 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2018-09-10 12:13:06 +0100
commit	1589ac43db479534db65fd855587b1447276215c (patch)
tree	f7875e38700d46264454f61efc66e80ce6f95208 /meta/classes/staging.bbclass
parent	91098772f8718c3538a49524177bf42d3a667a5e (diff)
download	poky-1589ac43db479534db65fd855587b1447276215c.tar.gz

taglib: Security fix CVE-2018-11439

CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file. References: https://nvd.nist.gov/vuln/detail/CVE-2018-11439 Patch from: https://github.com/taglib/taglib/pull/869/commits/272648ccfcccae30e002ccf34a22e075dd477278 (From OE-Core rev: a300c4917b6c22ef039158be7ae92055c35658d4) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/classes/staging.bbclass')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: