ffmpeg: fix for CVE-2022-3109 - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Narpat Mali <narpat.mali@windriver.com>	2023-01-04 15:06:55 +0000
committer	Steve Sakoman <steve@sakoman.com>	2023-01-12 04:56:26 -1000
commit	874b72fe259cd3a23f4613fccfe2e9cc3f79cd6a (patch)
tree	293ebb6129c61da8267352a3f34b427e790a8a64 /meta/recipes-connectivity
parent	bc8501a5a2ffc5673bad50f744d78822525bea9d (diff)
download	openembedded-core-contrib-874b72fe259cd3a23f4613fccfe2e9cc3f79cd6a.tar.gz

ffmpeg: fix for CVE-2022-3109

An issue was discovered in the FFmpeg package, where vp3_decode_frame in libavcodec/vp3.c lacks check of the return value of av_malloc() and will cause a null pointer dereference, impacting availability. CVE: CVE-2022-3109 Upstream-Status: Backport [https://github.com/FFmpeg/FFmpeg/commit/656cb0450aeb73b25d7d26980af342b37ac4c568] Signed-off-by: Narpat Mali <narpat.mali@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/recipes-connectivity')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: