diff options
author | Ross Burton <ross.burton@intel.com> | 2019-03-05 16:29:59 +0000 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2019-05-22 00:31:48 +0100 |
commit | c4d476508273b9c06ca6bcc42794107d59b56fba (patch) | |
tree | bc17e9e5833060c4e3120b7997c4226ab1e25a70 /meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb | |
parent | 0a0e9bd5134d450d1a01b97d179e8b13d00dbe9b (diff) | |
download | poky-c4d476508273b9c06ca6bcc42794107d59b56fba.tar.gz |
libsndfile1: update security patches
Remove CVE-2017-14245-14246.patch, fix rejected upstream as it doesn't solve the
underlying issue.
Instead 0001-a-ulaw-fix-multiple-buffer-overflows-432 also solves CVE-2017-14245
and CVE-2017-14246 properly.
Add patches for CVE-2017-12562 and CVE-2018-19758.
Refresh CVE-2018-13139.patch.
(From OE-Core rev: e6b272b7c0d10f49dde71dd9714aaa0fb6aec091)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb')
-rw-r--r-- | meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb b/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb index 9700f4a6e7..eb2c719d8d 100644 --- a/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb +++ b/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb | |||
@@ -10,11 +10,12 @@ SRC_URI = "http://www.mega-nerd.com/libsndfile/files/libsndfile-${PV}.tar.gz \ | |||
10 | file://CVE-2017-8361-8365.patch \ | 10 | file://CVE-2017-8361-8365.patch \ |
11 | file://CVE-2017-8362.patch \ | 11 | file://CVE-2017-8362.patch \ |
12 | file://CVE-2017-8363.patch \ | 12 | file://CVE-2017-8363.patch \ |
13 | file://CVE-2017-14245-14246.patch \ | ||
14 | file://CVE-2017-14634.patch \ | 13 | file://CVE-2017-14634.patch \ |
15 | file://CVE-2018-13139.patch \ | 14 | file://CVE-2018-13139.patch \ |
16 | file://0001-a-ulaw-fix-multiple-buffer-overflows-432.patch \ | 15 | file://0001-a-ulaw-fix-multiple-buffer-overflows-432.patch \ |
17 | file://CVE-2018-19432.patch \ | 16 | file://CVE-2018-19432.patch \ |
17 | file://CVE-2017-12562.patch \ | ||
18 | file://CVE-2018-19758.patch \ | ||
18 | " | 19 | " |
19 | 20 | ||
20 | SRC_URI[md5sum] = "646b5f98ce89ac60cdb060fcd398247c" | 21 | SRC_URI[md5sum] = "646b5f98ce89ac60cdb060fcd398247c" |