generic-poky

sysmo-bts

generic-poky

Fork 0

Commit Graph

Author	SHA1	Message	Date
Saul Wold	eb76c48798	Upstream-Status Cleanups (From OE-Core rev: ea438b58c9a90e4c3147f99d63a9afc66963c5a1) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2014-04-25 17:19:20 +01:00
Ming Liu	074a0ab2bf	gst-ffmpeg: fix CVE-2013-3674 The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3674 (From OE-Core rev: f1721553a873b242bc26ad3e4d618aea39dfd507) Signed-off-by: Ming Liu <ming.liu@windriver.com> Signed-off-by: Jeff Polk <jeff.polk@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2013-11-22 14:08:33 +00:00

Author

SHA1

Message

Date

Saul Wold

eb76c48798

Upstream-Status Cleanups

(From OE-Core rev: ea438b58c9a90e4c3147f99d63a9afc66963c5a1)

Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2014-04-25 17:19:20 +01:00

Ming Liu

074a0ab2bf

gst-ffmpeg: fix CVE-2013-3674

The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before
1.2.1 does not validate the presence of non-header data in a buffer, which
allows remote attackers to cause a denial of service (out-of-bounds array
access and application crash) via crafted CD Graphics Video data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3674

(From OE-Core rev: f1721553a873b242bc26ad3e4d618aea39dfd507)

Signed-off-by: Ming Liu <ming.liu@windriver.com>
Signed-off-by: Jeff Polk <jeff.polk@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2013-11-22 14:08:33 +00:00

2 Commits