opusfile: patch CVE-2022-47021

Details: https://nvd.nist.gov/vuln/detail/CVE-2022-47021 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
author: Ankur Tyagi <ankur.tyagi85@gmail.com> 2026-01-10 12:43:46 +1300
committer: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-12 08:12:20 +0530
commit: 3d4aef2b2d3391cbbb81ae36498ab31720fb550e (patch)
tree: 9920e077fcfdb45788889f819d10cc87bf04ba90
parent: 23edbe268c53b33b5a5a93fc1af50b4170a32dcd (diff)
download: meta-openembedded-3d4aef2b2d3391cbbb81ae36498ab31720fb550e.tar.gz
2 files changed, 48 insertions, 1 deletions
diff --git a/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch b/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch
new file mode 100644
index 0000000000..f1bf957949
--- /dev/null
+++ b/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch
@@ -0,0 +1,45 @@
+From 84392e8ce385707de855865dd16d586f9331f2e5 Mon Sep 17 00:00:00 2001
+From: Ralph Giles <giles@thaumas.net>
+Date: Tue, 6 Sep 2022 19:04:31 -0700
+Subject: [PATCH] Propagate allocation failure from ogg_sync_buffer.
+Instead of segfault, report OP_EFAULT if ogg_sync_buffer returns
+a null pointer. This allows more graceful recovery by the caller
+in the unlikely event of a fallible ogg_malloc call.
+We do check the return value elsewhere in the code, so the new
+checks make the code more consistent.
+Thanks to https://github.com/xiph/opusfile/issues/36 for reporting.
+Signed-off-by: Timothy B. Terriberry <tterribe@xiph.org>
+Signed-off-by: Mark Harris <mark.hsj@gmail.com>
+CVE: CVE-2022-47021
+Upstream-Status: Backport [https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5]
+(cherry picked from commit 0a4cd796df5b030cb866f3f4a5e41a4b92caddf5)
+Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
+---
+ src/opusfile.c | 2 ++
+ 1 file changed, 2 insertions(+)
+diff --git a/src/opusfile.c b/src/opusfile.c
+index 642c784..edda2d3 100644
+--- a/src/opusfile.c
+++ b/src/opusfile.c
+@@ -148,6 +148,7 @@ static int op_get_data(OggOpusFile *_of,int _nbytes){
+   int            nbytes;
+   OP_ASSERT(_nbytes>0);
+   buffer=(unsigned char *)ogg_sync_buffer(&_of->oy,_nbytes);
+  if(OP_UNLIKELY(buffer==NULL))return OP_EFAULT;
+   nbytes=(int)(*_of->callbacks.read)(_of->stream,buffer,_nbytes);
+   OP_ASSERT(nbytes<=_nbytes);
+   if(OP_LIKELY(nbytes>0))ogg_sync_wrote(&_of->oy,nbytes);
+@@ -1527,6 +1528,7 @@ static int op_open1(OggOpusFile *_of,
+   if(_initial_bytes>0){
+     char *buffer;
+     buffer=ogg_sync_buffer(&_of->oy,(long)_initial_bytes);
+    if(OP_UNLIKELY(buffer==NULL))return OP_EFAULT;
+     memcpy(buffer,_initial_data,_initial_bytes*sizeof(*buffer));
+     ogg_sync_wrote(&_of->oy,(long)_initial_bytes);
+   }
diff --git a/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb b/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb
index c775cef5a1..51afce9217 100644
--- a/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb
+++ b/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb
@@ -7,7 +7,9 @@ DEPENDS = "libogg openssl libopus"
 LICENSE = "BSD-3-Clause"
 LIC_FILES_CHKSUM = "file://COPYING;md5=6ac22b992dde6a891f8949c3e2da8576"
-SRC_URI = "https://downloads.xiph.org/releases/opus/${BP}.tar.gz"
+SRC_URI = "https://downloads.xiph.org/releases/opus/${BP}.tar.gz \
+           file://CVE-2022-47021.patch \
+"
 SRC_URI[md5sum] = "45e8c62f6cd413395223c82f06bfa8ec"
 SRC_URI[sha256sum] = "118d8601c12dd6a44f52423e68ca9083cc9f2bfe72da7a8c1acb22a80ae3550b"
author	Ankur Tyagi <ankur.tyagi85@gmail.com>	2026-01-10 12:43:46 +1300
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-12 08:12:20 +0530
commit	3d4aef2b2d3391cbbb81ae36498ab31720fb550e (patch)
tree	9920e077fcfdb45788889f819d10cc87bf04ba90
parent	23edbe268c53b33b5a5a93fc1af50b4170a32dcd (diff)
download	meta-openembedded-3d4aef2b2d3391cbbb81ae36498ab31720fb550e.tar.gz

diff --git a/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch b/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch new file mode 100644 index 0000000000..f1bf957949 --- /dev/null +++ b/meta-multimedia/recipes-multimedia/opusfile/opusfile/CVE-2022-47021.patch
@@ -0,0 +1,45 @@
		1	From 84392e8ce385707de855865dd16d586f9331f2e5 Mon Sep 17 00:00:00 2001
		2	From: Ralph Giles <giles@thaumas.net>
		3	Date: Tue, 6 Sep 2022 19:04:31 -0700
		4	Subject: [PATCH] Propagate allocation failure from ogg_sync_buffer.
		5
		6	Instead of segfault, report OP_EFAULT if ogg_sync_buffer returns
		7	a null pointer. This allows more graceful recovery by the caller
		8	in the unlikely event of a fallible ogg_malloc call.
		9
		10	We do check the return value elsewhere in the code, so the new
		11	checks make the code more consistent.
		12
		13	Thanks to https://github.com/xiph/opusfile/issues/36 for reporting.
		14
		15	Signed-off-by: Timothy B. Terriberry <tterribe@xiph.org>
		16	Signed-off-by: Mark Harris <mark.hsj@gmail.com>
		17
		18	CVE: CVE-2022-47021
		19	Upstream-Status: Backport [https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5]
		20	(cherry picked from commit 0a4cd796df5b030cb866f3f4a5e41a4b92caddf5)
		21	Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
		22	---
		23	src/opusfile.c \| 2 ++
		24	1 file changed, 2 insertions(+)
		25
		26	diff --git a/src/opusfile.c b/src/opusfile.c
		27	index 642c784..edda2d3 100644
		28	--- a/src/opusfile.c
		29	+++ b/src/opusfile.c
		30	@@ -148,6 +148,7 @@ static int op_get_data(OggOpusFile *_of,int _nbytes){
		31	int nbytes;
		32	OP_ASSERT(_nbytes>0);
		33	buffer=(unsigned char *)ogg_sync_buffer(&_of->oy,_nbytes);
		34	+ if(OP_UNLIKELY(buffer==NULL))return OP_EFAULT;
		35	nbytes=(int)(*_of->callbacks.read)(_of->stream,buffer,_nbytes);
		36	OP_ASSERT(nbytes<=_nbytes);
		37	if(OP_LIKELY(nbytes>0))ogg_sync_wrote(&_of->oy,nbytes);
		38	@@ -1527,6 +1528,7 @@ static int op_open1(OggOpusFile *_of,
		39	if(_initial_bytes>0){
		40	char *buffer;
		41	buffer=ogg_sync_buffer(&_of->oy,(long)_initial_bytes);
		42	+ if(OP_UNLIKELY(buffer==NULL))return OP_EFAULT;
		43	memcpy(buffer,_initial_data,_initial_bytessizeof(buffer));
		44	ogg_sync_wrote(&_of->oy,(long)_initial_bytes);
		45	}


diff --git a/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb b/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb index c775cef5a1..51afce9217 100644 --- a/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb +++ b/meta-multimedia/recipes-multimedia/opusfile/opusfile_0.12.bb
@@ -7,7 +7,9 @@ DEPENDS = "libogg openssl libopus"
7	LICENSE = "BSD-3-Clause"	7	LICENSE = "BSD-3-Clause"
8	LIC_FILES_CHKSUM = "file://COPYING;md5=6ac22b992dde6a891f8949c3e2da8576"	8	LIC_FILES_CHKSUM = "file://COPYING;md5=6ac22b992dde6a891f8949c3e2da8576"
9		9
10	SRC_URI = "https://downloads.xiph.org/releases/opus/${BP}.tar.gz"	10	SRC_URI = "https://downloads.xiph.org/releases/opus/${BP}.tar.gz \
		11	file://CVE-2022-47021.patch \
		12	"
11	SRC_URI[md5sum] = "45e8c62f6cd413395223c82f06bfa8ec"	13	SRC_URI[md5sum] = "45e8c62f6cd413395223c82f06bfa8ec"
12	SRC_URI[sha256sum] = "118d8601c12dd6a44f52423e68ca9083cc9f2bfe72da7a8c1acb22a80ae3550b"	14	SRC_URI[sha256sum] = "118d8601c12dd6a44f52423e68ca9083cc9f2bfe72da7a8c1acb22a80ae3550b"
13		15