2 files changed, 39 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch
new file mode 100644
index 0000000000..6762f256e0
--- /dev/null
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch
@@ -0,0 +1,38 @@
+From aa07d94c10d71fac389dbbb264a59c1f6117eead Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Sebastian=20Dr=C3=B6ge?= <sebastian@centricular.com>
+Date: Mon, 30 Sep 2024 18:19:30 +0300
+Subject: [PATCH] discoverer: Don't print channel layout for more than 64
+ channels
+64+ channels are always unpositioned / unknown layout.
+Thanks to Antonio Morales for finding and reporting the issue.
+Fixes GHSL-2024-248
+Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/3864
+Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8034>
+CVE: CVE-2024-47600
+Upstream-Status: Backport [https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/aa07d94c10d71fac389dbbb264a59c1f6117eead]
+Signed-off-by: Peter Marko <peter.marko@siemens.com>
+---
+ tools/gst-discoverer.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+diff --git a/tools/gst-discoverer.c b/tools/gst-discoverer.c
+index e3f048bed5..4a2a1b4bc4 100644
+--- a/tools/gst-discoverer.c
+++ b/tools/gst-discoverer.c
+@@ -222,7 +222,7 @@ format_channel_mask (GstDiscovererAudioInfo * ainfo)
+ 
+   channel_mask = gst_discoverer_audio_info_get_channel_mask (ainfo);
+ 
+-  if (channel_mask != 0) {
+  if (channel_mask != 0 && channels <= 64) {
+     gst_audio_channel_positions_from_mask (channels, channel_mask, position);
+ 
+     for (i = 0; i < channels; i++) {
+-- 
+2.30.2
diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb
index 793b8afc3d..982389d657 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb
@@ -17,6 +17,7 @@ SRC_URI = "https://gstreamer.freedesktop.org/src/gst-plugins-base/gst-plugins-ba
           file://0008-ssaparse-Search-for-closing-brace-after-opening-brac.patch \
           file://0009-ssaparse-Don-t-use-strstr-on-strings-that-are-potent.patch \
           file://0010-id3v2-Don-t-try-parsing-extended-header-if-not-enoug.patch \
+           file://0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch \
           "
 SRC_URI[sha256sum] = "73cfadc3a6ffe77ed974cfd6fb391c605e4531f48db21dd6b9f42b8cb69bd8c1"

diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch new file mode 100644 index 0000000000..6762f256e0 --- /dev/null +++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch
@@ -0,0 +1,38 @@
		1	From aa07d94c10d71fac389dbbb264a59c1f6117eead Mon Sep 17 00:00:00 2001
		2	From: =?UTF-8?q?Sebastian=20Dr=C3=B6ge?= <sebastian@centricular.com>
		3	Date: Mon, 30 Sep 2024 18:19:30 +0300
		4	Subject: [PATCH] discoverer: Don't print channel layout for more than 64
		5	channels
		6
		7	64+ channels are always unpositioned / unknown layout.
		8
		9	Thanks to Antonio Morales for finding and reporting the issue.
		10
		11	Fixes GHSL-2024-248
		12	Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/3864
		13
		14	Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8034>
		15
		16	CVE: CVE-2024-47600
		17	Upstream-Status: Backport [https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/aa07d94c10d71fac389dbbb264a59c1f6117eead]
		18	Signed-off-by: Peter Marko <peter.marko@siemens.com>
		19	---
		20	tools/gst-discoverer.c \| 2 +-
		21	1 file changed, 1 insertion(+), 1 deletion(-)
		22
		23	diff --git a/tools/gst-discoverer.c b/tools/gst-discoverer.c
		24	index e3f048bed5..4a2a1b4bc4 100644
		25	--- a/tools/gst-discoverer.c
		26	+++ b/tools/gst-discoverer.c
		27	@@ -222,7 +222,7 @@ format_channel_mask (GstDiscovererAudioInfo * ainfo)
		28
		29	channel_mask = gst_discoverer_audio_info_get_channel_mask (ainfo);
		30
		31	- if (channel_mask != 0) {
		32	+ if (channel_mask != 0 && channels <= 64) {
		33	gst_audio_channel_positions_from_mask (channels, channel_mask, position);
		34
		35	for (i = 0; i < channels; i++) {
		36	--
		37	2.30.2
		38


diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb index 793b8afc3d..982389d657 100644 --- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb +++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.22.12.bb
@@ -17,6 +17,7 @@ SRC_URI = "https://gstreamer.freedesktop.org/src/gst-plugins-base/gst-plugins-ba
17	file://0008-ssaparse-Search-for-closing-brace-after-opening-brac.patch \	17	file://0008-ssaparse-Search-for-closing-brace-after-opening-brac.patch \
18	file://0009-ssaparse-Don-t-use-strstr-on-strings-that-are-potent.patch \	18	file://0009-ssaparse-Don-t-use-strstr-on-strings-that-are-potent.patch \
19	file://0010-id3v2-Don-t-try-parsing-extended-header-if-not-enoug.patch \	19	file://0010-id3v2-Don-t-try-parsing-extended-header-if-not-enoug.patch \
		20	file://0011-discoverer-Don-t-print-channel-layout-for-more-than-.patch \
20	"	21	"
21	SRC_URI[sha256sum] = "73cfadc3a6ffe77ed974cfd6fb391c605e4531f48db21dd6b9f42b8cb69bd8c1"	22	SRC_URI[sha256sum] = "73cfadc3a6ffe77ed974cfd6fb391c605e4531f48db21dd6b9f42b8cb69bd8c1"
22		23