diff options
author | Yue Tao <Yue.Tao@windriver.com> | 2014-04-14 18:58:29 +0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2014-05-29 13:42:12 +0100 |
commit | 62854105de72f09dcffa08dbdc975e8f306a4a39 (patch) | |
tree | fb7656ff3704d32486d9d07a9a2258b328c7eeb8 /meta/site | |
parent | 408581d744221a1dc723ed6bf4985b1021aa52c4 (diff) | |
download | openembedded-core-contrib-62854105de72f09dcffa08dbdc975e8f306a4a39.tar.gz |
gst-ffmpeg: fix for Security Advisory CVE-2013-0865
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an
unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood
Studios VQA Video file, which triggers an out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0865
(From OE-Core rev: 4a93fc0a63cedbebfdc9577e2f1deb3598fb5851)
Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/site')
0 files changed, 0 insertions, 0 deletions