sysmo-bts
/
generic-poky
9
0
Fork 0
Code Pull Requests Releases Activity
generic-poky/meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13
History
Roy Li 3fc5cfe3dd gst-ffmpeg: fixes for CVE-2014-8548 and CVE-2014-8541 
Issue: LIN7-1755
Issue: LIN7-1739

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8541

libavcodec/mjpegdec.c in FFmpeg before 2.4.2 considers only dimension
differences, and not bits-per-pixel differences, when determining whether an
image size has changed, which allows remote attackers to cause a denial of
service (out-of-bounds access) or possibly have unspecified other impact via
crafted MJPEG data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8548

Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote
attackers to cause a denial of service (out-of-bounds access) or possibly
have unspecified other impact via crafted Quicktime Graphics (aka SMC) video
data.

(From OE-Core rev: 4bd50c5a967af2b8f0fe77b8f9c100169e4fc531)

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Mark Hatle <mark.hatle@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 		2014-11-25 13:03:28 +00:00
..
0001-aacdec-check-channel-count.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-alac-fix-nb_samples-order-case.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0856 2014-05-21 19:50:21 +01:00
0001-alsdec-check-block-length.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0845 2014-05-21 19:50:20 +01:00
0001-atrac3dec-Check-coding-mode-against-channels.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0858 2014-05-21 19:50:20 +01:00
0001-avcodec-dsputil-fix-signedness-in-sizeof-comparissio.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-avcodec-msrle-use-av_image_get_linesize-to-calculate.patch gst-ffmpeg: fix for Security Advisory CVE-2014-2099 2014-05-21 19:50:20 +01:00
0001-avcodec-parser-reset-indexes-on-realloc-failure.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-avcodec-rpza-Perform-pointer-advance-and-checks-befo.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-avcodec-smc-fix-off-by-1-error.patch gst-ffmpeg: fixes for CVE-2014-8548 and CVE-2014-8541 2014-11-25 13:03:28 +00:00
0001-avformat-mpegtsenc-Check-data-array-size-in-mpegts_w.patch gst-ffmpeg: fix for Security Advisory CVE-2014-2263 2014-05-21 19:50:20 +01:00
0001-eamad-fix-out-of-array-accesses.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0851 2014-05-21 19:50:20 +01:00
0001-error-concealment-initialize-block-index.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-error_concealment-Check-that-the-picture-is-not-in-a.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-ffserver-set-oformat.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-h264-correct-ref-count-check-and-limit-fix-out-of-ar.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0850 2014-05-21 19:50:21 +01:00
0001-h264-set-parameters-from-SPS-whenever-it-changes.patch gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-4358 2014-10-18 16:14:05 +02:00
0001-h264-skip-error-concealment-when-SPS-and-slices-are-.patch gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0869 2014-10-18 16:14:05 +02:00
0001-h264_sei-Fix-infinite-loop.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-huffyuvdec-Check-init_vlc-return-codes.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0868 2014-05-21 19:50:20 +01:00
0001-huffyuvdec-Skip-len-0-cases.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0868 2014-05-21 19:50:20 +01:00
0001-huffyuvdec-check-width-more-completely-avoid-out-of-.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-lavf-compute-probe-buffer-size-more-reliably.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-mjpegdec-check-SE.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0854 2014-05-21 19:50:21 +01:00
0001-pgssubdec-check-RLE-size-before-copying.-Fix-out-of-.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0852 2014-05-21 19:50:20 +01:00
0001-pngdec-filter-dont-access-out-of-array-elements-at-t.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-qdm2-check-array-index-before-use-fix-out-of-array-a.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-qdm2dec-fix-buffer-overflow.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-roqvideodec-check-dimensions-validity.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0849 2014-05-21 19:50:21 +01:00
0001-smackerdec-Check-that-the-last-indexes-are-within-th.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-vp3-Copy-all-3-frames-for-thread-updates.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-vp3-fix-oob-read-for-negative-tokens-and-memleaks-on.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
0001-vqavideo-check-chunk-sizes-before-reading-chunks.patch gst-ffmpeg: fix for Security Advisory CVE-2013-0865 2014-05-21 19:50:20 +01:00
0002-avcodec-mjpegdec-check-bits-per-pixel-for-changes-si.patch gst-ffmpeg: fixes for CVE-2014-8548 and CVE-2014-8541 2014-11-25 13:03:28 +00:00
configure-fix.patch gst-ffmpeg: fix --disable-yasm 2013-04-08 16:56:46 +01:00
gst-ffmpeg-CVE-2013-0855.patch gst-ffmpeg: Add CVE patches 2014-07-23 21:59:24 +01:00
gst-ffmpeg-CVE-2013-3674.patch Upstream-Status Cleanups 2014-04-25 17:19:20 +01:00
h264_qpel_mmx.patch h264_qpel_mmx.patch: fix Upstream-Status tag 2012-05-11 17:50:49 +01:00
libav-9.patch gst-ffmpeg: add PACKAGECONFIG for libav9 and patch from Gentoo 2014-08-17 10:01:35 +01:00
libav_e500mc.patch gstreamer: gst-ffmpeg: fix build issues for libav 2012-08-15 14:26:39 +01:00
libav_e5500.patch gst-ffmpeg: fix libav config error for ppc 2013-06-25 17:44:56 +01:00
lower-rank.diff gst-ffmpeg: upgrade to 0.10.13 2012-01-03 12:14:21 +00:00