diff options
author | Michael Opdenacker <michael.opdenacker@bootlin.com> | 2023-09-25 16:00:53 +0200 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2023-09-29 04:29:01 -1000 |
commit | 669079e7c0a64f36720bea2d256bd60496713300 (patch) | |
tree | 6647b3bfba870054d9fe1d0f7113fffcba4bdc97 /meta/recipes-multimedia/flac/flac_1.3.3.bb | |
parent | ea9b55c8588ce5d7f9d8a1aa317d3c5b9f966dd8 (diff) | |
download | poky-669079e7c0a64f36720bea2d256bd60496713300.tar.gz |
flac: fix CVE-2020-22219
Buffer Overflow vulnerability in function bitwriter_grow_ in flac before
1.4.0 allows remote attackers to run arbitrary code via crafted input to
the encoder.
(From OE-Core rev: 87d92cb3d20c2686caddaa29cd17e18850ad9484)
Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com>
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Tested-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta/recipes-multimedia/flac/flac_1.3.3.bb')
-rw-r--r-- | meta/recipes-multimedia/flac/flac_1.3.3.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/flac/flac_1.3.3.bb b/meta/recipes-multimedia/flac/flac_1.3.3.bb index cb6692aedf..ca04f36d1a 100644 --- a/meta/recipes-multimedia/flac/flac_1.3.3.bb +++ b/meta/recipes-multimedia/flac/flac_1.3.3.bb | |||
@@ -15,6 +15,7 @@ LIC_FILES_CHKSUM = "file://COPYING.FDL;md5=ad1419ecc56e060eccf8184a87c4285f \ | |||
15 | DEPENDS = "libogg" | 15 | DEPENDS = "libogg" |
16 | 16 | ||
17 | SRC_URI = "http://downloads.xiph.org/releases/flac/${BP}.tar.xz \ | 17 | SRC_URI = "http://downloads.xiph.org/releases/flac/${BP}.tar.xz \ |
18 | file://CVE-2020-22219.patch \ | ||
18 | " | 19 | " |
19 | 20 | ||
20 | SRC_URI[md5sum] = "26703ed2858c1fc9ffc05136d13daa69" | 21 | SRC_URI[md5sum] = "26703ed2858c1fc9ffc05136d13daa69" |