summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/which/which_2.18.bb
diff options
context:
space:
mode:
authorYue Tao <Yue.Tao@windriver.com>2014-04-14 18:58:29 +0800
committerRichard Purdie <richard.purdie@linuxfoundation.org>2014-05-29 13:43:29 +0100
commitf091b8a3cf3fb271f740f98c0805c6027e9ee19f (patch)
tree491eb9f4c228639c7cc76942ecedd3ff23caefe0 /meta/recipes-extended/which/which_2.18.bb
parent38083d01e77e021f310920d9ac2b10a92238c255 (diff)
downloadpoky-f091b8a3cf3fb271f740f98c0805c6027e9ee19f.tar.gz
gst-ffmpeg: fix for Security Advisory CVE-2013-0865
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood Studios VQA Video file, which triggers an out-of-bounds write. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0865 (From OE-Core rev: 4a93fc0a63cedbebfdc9577e2f1deb3598fb5851) (From OE-Core rev: 62854105de72f09dcffa08dbdc975e8f306a4a39) Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended/which/which_2.18.bb')
0 files changed, 0 insertions, 0 deletions