<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-multimedia, branch yocto-2.4</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=yocto-2.4</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=yocto-2.4'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2017-10-16T22:52:44+00:00</updated>
<entry>
<title>gstreamer1.0-plugins-bad: Add dependency on libdrm when wayland is enabled</title>
<updated>2017-10-16T22:52:44+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2017-10-08T17:05:44+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=840527352acce412d8781ecc1da306b8f5ad833d'/>
<id>urn:sha1:840527352acce412d8781ecc1da306b8f5ad833d</id>
<content type='text'>
Fixes

WARNING: gstreamer1.0-plugins-bad-1.12.2-r0 do_package_qa: QA Issue: libgstwayland-1.0 rdepends on libdrm, but it isn't a build dependency, missing libdrm in DEPENDS or PACKAGECONFIG? [build-deps]
WARNING: gstreamer1.0-plugins-bad-1.12.2-r0 do_package_qa: QA Issue: gstreamer1.0-plugins-bad-waylandsink rdepends on libdrm, but it isn't a build dependency, missing libdrm in DEPENDS or PACKAGECONFIG? [build-deps]

(From OE-Core rev: cb2c00c369e61b0e61298b0ad076e5bc8bc67bb9)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>ffmpeg: backport patches to fix 12 CVEs</title>
<updated>2017-10-07T22:20:39+00:00</updated>
<author>
<name>Chen Qi</name>
<email>Qi.Chen@windriver.com</email>
</author>
<published>2017-09-26T07:43:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=4435ab4a3b2acbd66910dad5c602ec71f8902386'/>
<id>urn:sha1:4435ab4a3b2acbd66910dad5c602ec71f8902386</id>
<content type='text'>
Backport patches to fix the following CVEs.

CVE-2017-14054
CVE-2017-14055
CVE-2017-14056
CVE-2017-14057
CVE-2017-14058
CVE-2017-14059
CVE-2017-14169
CVE-2017-14170
CVE-2017-14171
CVE-2017-14222
CVE-2017-14223
CVE-2017-14225

(From OE-Core rev: 13862938a6a7a938f8d781655ceaf78a81b57549)

Signed-off-by: Chen Qi &lt;Qi.Chen@windriver.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>lame: fix CVE-2017-13712</title>
<updated>2017-09-25T13:14:17+00:00</updated>
<author>
<name>Kai Kang</name>
<email>kai.kang@windriver.com</email>
</author>
<published>2017-09-22T06:27:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=fd994b5bede3724ce23f3766e6109d83e534d3f3'/>
<id>urn:sha1:fd994b5bede3724ce23f3766e6109d83e534d3f3</id>
<content type='text'>
Backport patch to fix CVE-2017-13712 for lame.

(From OE-Core rev: 3e80f86b4227f1d6ddd604a0738449d93f01c03f)

Signed-off-by: Kai Kang &lt;kai.kang@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>gstreamer1.0-libav: Fix build on mips</title>
<updated>2017-09-25T13:14:17+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2017-09-21T17:42:15+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=4862e21fa2e673ac62db4f8a5c5b1acbecb3a9ec'/>
<id>urn:sha1:4862e21fa2e673ac62db4f8a5c5b1acbecb3a9ec</id>
<content type='text'>
(From OE-Core rev: c70812de7d9e35e9fc01a1b4b142a5261913fb03)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>tiff: Security fix CVE-2017-13726 and CVE-2017-13727</title>
<updated>2017-09-22T16:15:30+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@windriver.com</email>
</author>
<published>2017-09-21T03:21:39+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=89c81eedcaf45eecad9e5b20214d89e15db310c7'/>
<id>urn:sha1:89c81eedcaf45eecad9e5b20214d89e15db310c7</id>
<content type='text'>
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13726
https://nvd.nist.gov/vuln/detail/CVE-2017-13727

Patches from:
CVE-2017-13726:
https://github.com/vadz/libtiff/commit/f91ca83a21a6a583050e5a5755ce1441b2bf1d7e

CVE-2017-13727:
https://github.com/vadz/libtiff/commit/b6af137bf9ef852f1a48a50a5afb88f9e9da01cc

(From OE-Core rev: 8dc9d74b7e6816f59eb61dcda6a93c0753a5e4ab)

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>alsa-utils: Do not hardcode path to /lib/udev</title>
<updated>2017-09-11T16:30:28+00:00</updated>
<author>
<name>Peter Kjellerstedt</name>
<email>peter.kjellerstedt@axis.com</email>
</author>
<published>2017-09-01T17:49:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=8e9ceff887eb270be34f224811799f86e9dc91a8'/>
<id>urn:sha1:8e9ceff887eb270be34f224811799f86e9dc91a8</id>
<content type='text'>
Use ${nonarch_base_libdir}/udev instead. This avoids problems when
usrmerge is enabled in DISTRO_FEATURES and udev support is disabled.

(From OE-Core rev: 0a4372705a030ca54ed420cdfec33d46ab93499c)

Signed-off-by: Peter Kjellerstedt &lt;peter.kjellerstedt@axis.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>pulseaudio: Backport a patch to replace use of VLAIS</title>
<updated>2017-09-11T16:30:27+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2017-09-01T05:20:40+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=3c492afe4f3c8d1cf7e1fef0e83a71dd1557c62e'/>
<id>urn:sha1:3c492afe4f3c8d1cf7e1fef0e83a71dd1557c62e</id>
<content type='text'>
Fix build with clang

(From OE-Core rev: ff980856d1b6ec392d684bfe758c8304933c18bd)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>gstreamer1.0-plugins-good: fix 4k playback for v4l2 decoder</title>
<updated>2017-09-05T14:01:02+00:00</updated>
<author>
<name>Nicolas Dechesne</name>
<email>nicolas.dechesne@linaro.org</email>
</author>
<published>2017-09-04T08:23:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=04f49ae8843a36fec37a47a3d16abc3b53b1f376'/>
<id>urn:sha1:04f49ae8843a36fec37a47a3d16abc3b53b1f376</id>
<content type='text'>
Backport a fix already merged upstream in master and 1.12 branch, it fixes 4K video
playback on any platform that uses v4l2 codecs, such as Dragonboard 820c.

(From OE-Core rev: b662944b28080dfb68833d4a81655262b04ada67)

Signed-off-by: Nicolas Dechesne &lt;nicolas.dechesne@linaro.org&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>tiff: Security fixes</title>
<updated>2017-08-23T07:47:03+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@windriver.com</email>
</author>
<published>2017-08-22T00:58:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=1a73074d75b8aa12427a3c20f7f40223127e43dd'/>
<id>urn:sha1:1a73074d75b8aa12427a3c20f7f40223127e43dd</id>
<content type='text'>
Fix CVE-2017-9147, CVE-2017-9936, CVE-2017-10668, CVE-2017-11335

References:
https://nvd.nist.gov/vuln/detail/CVE-2017-9147
https://nvd.nist.gov/vuln/detail/CVE-2017-9936
https://nvd.nist.gov/vuln/detail/CVE-2017-10668
https://nvd.nist.gov/vuln/detail/CVE-2017-11335

Patches from:
CVE-2017-9147:
https://github.com/vadz/libtiff/commit/4d4fa0b68ae9ae038959ee4f69ebe288ec892f06
CVE-2017-9936:
https://github.com/vadz/libtiff/commit/fe8d7165956b88df4837034a9161dc5fd20cf67a
CVE-2017-10688:
https://github.com/vadz/libtiff/commit/6173a57d39e04d68b139f8c1aa499a24dbe74ba1
CVE-2017-11355:
https://github.com/vadz/libtiff/commit/69bfeec247899776b1b396651adb47436e5f1556

(From OE-Core rev: 5c89539edb17d01ffe82a1b2e7d092816003ecf3)

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>mpg123: upgrade to 1.25.6</title>
<updated>2017-08-18T22:46:38+00:00</updated>
<author>
<name>Dengke Du</name>
<email>dengke.du@windriver.com</email>
</author>
<published>2017-08-18T06:42:20+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=4e3878a808b1e2866e7e7f87867eb0965a0f976e'/>
<id>urn:sha1:4e3878a808b1e2866e7e7f87867eb0965a0f976e</id>
<content type='text'>
(From OE-Core rev: 03abde044a6c7cf4a54a9d074189f192b331d650)

Signed-off-by: Dengke Du &lt;dengke.du@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
