aboutsummaryrefslogtreecommitdiffstats
path: root/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-5146.patch
diff options
context:
space:
mode:
authorTanu Kaskinen <tanuk@iki.fi>2018-03-31 08:21:31 +0300
committerRichard Purdie <richard.purdie@linuxfoundation.org>2018-03-31 14:17:22 +0100
commite584aca38396db5e3d461f57804519261eecedc2 (patch)
tree4dbf793ab2342fba838d15de64e9700aa4ad6d8c /meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-5146.patch
parent3ea65ee8b31a16a20f5c28c19f4c758f8deabf6e (diff)
downloadopenembedded-core-contrib-e584aca38396db5e3d461f57804519261eecedc2.tar.gz
libvorbis: CVE-2017-14632
Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14632 Signed-off-by: Tanu Kaskinen <tanuk@iki.fi> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-5146.patch')
0 files changed, 0 insertions, 0 deletions
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-14 10:43:53 +0000