From: <rongqing.li@windriver.com>
To: <openembedded-core@lists.openembedded.org>
Subject: [PATCH 00/16] gst-ffmpeg: merge several CVE patches
Date: Tue, 22 Jul 2014 14:16:01 +0800 [thread overview]
Message-ID: <cover.1406006666.git.rongqing.li@windriver.com> (raw)
From: Roy Li <rongqing.li@windriver.com>
The following changes since commit 6bc3696d8451a23d743daf03ee98c4ba54ce4551:
wget: Remove unneeded DEPENDS line (2014-07-21 19:10:30 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/ffmpeg-7-21
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=roy/ffmpeg-7-21
Yue Tao (16):
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0866
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0875
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0860
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3934
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3946
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7023
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7009
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0855
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-4351
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0848
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3944
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7010
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3941
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0846
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6618
gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6617
.../0001-aacdec-check-channel-count.patch | 34 ++++
...util-fix-signedness-in-sizeof-comparissio.patch | 38 ++++
...c-parser-reset-indexes-on-realloc-failure.patch | 50 ++++++
...a-Perform-pointer-advance-and-checks-befo.patch | 81 +++++++++
...-error-concealment-initialize-block-index.patch | 29 ++++
...alment-Check-that-the-picture-is-not-in-a.patch | 37 ++++
.../0001-ffserver-set-oformat.patch | 36 ++++
.../0001-h264_sei-Fix-infinite-loop.patch | 39 +++++
...check-width-more-completely-avoid-out-of-.patch | 30 ++++
...f-compute-probe-buffer-size-more-reliably.patch | 45 +++++
...er-dont-access-out-of-array-elements-at-t.patch | 44 +++++
...array-index-before-use-fix-out-of-array-a.patch | 30 ++++
.../0001-qdm2dec-fix-buffer-overflow.patch | 58 +++++++
...Check-that-the-last-indexes-are-within-th.patch | 32 ++++
...-vp3-Copy-all-3-frames-for-thread-updates.patch | 32 ++++
...-read-for-negative-tokens-and-memleaks-on.patch | 183 ++++++++++++++++++++
.../gst-ffmpeg-CVE-2013-0855.patch | 100 +++++++++++
.../gstreamer/gst-ffmpeg_0.10.13.bb | 17 ++
18 files changed, 915 insertions(+)
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-aacdec-check-channel-count.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-avcodec-dsputil-fix-signedness-in-sizeof-comparissio.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-avcodec-parser-reset-indexes-on-realloc-failure.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-avcodec-rpza-Perform-pointer-advance-and-checks-befo.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-error-concealment-initialize-block-index.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-error_concealment-Check-that-the-picture-is-not-in-a.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-ffserver-set-oformat.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-h264_sei-Fix-infinite-loop.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-huffyuvdec-check-width-more-completely-avoid-out-of-.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-lavf-compute-probe-buffer-size-more-reliably.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-pngdec-filter-dont-access-out-of-array-elements-at-t.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-qdm2-check-array-index-before-use-fix-out-of-array-a.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-qdm2dec-fix-buffer-overflow.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-smackerdec-Check-that-the-last-indexes-are-within-th.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-vp3-Copy-all-3-frames-for-thread-updates.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-vp3-fix-oob-read-for-negative-tokens-and-memleaks-on.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/gst-ffmpeg-CVE-2013-0855.patch
--
1.7.10.4
next reply other threads:[~2014-07-22 6:16 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-07-22 6:16 rongqing.li [this message]
2014-07-22 6:16 ` [PATCH 01/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0866 rongqing.li
2014-07-22 6:16 ` [PATCH 02/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0875 rongqing.li
2014-07-22 6:16 ` [PATCH 03/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0860 rongqing.li
2014-07-22 6:16 ` [PATCH 04/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3934 rongqing.li
2014-07-22 6:16 ` [PATCH 05/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3946 rongqing.li
2014-07-22 6:16 ` [PATCH 06/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7023 rongqing.li
2014-07-22 6:16 ` [PATCH 07/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7009 rongqing.li
2014-07-22 6:16 ` [PATCH 08/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0855 rongqing.li
2014-07-22 6:16 ` [PATCH 09/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-4351 rongqing.li
2014-07-22 6:16 ` [PATCH 10/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0848 rongqing.li
2014-07-22 6:16 ` [PATCH 11/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3944 rongqing.li
2014-07-22 6:16 ` [PATCH 12/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7010 rongqing.li
2014-07-22 6:16 ` [PATCH 13/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3941 rongqing.li
2014-07-22 6:16 ` [PATCH 14/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0846 rongqing.li
2014-07-22 6:16 ` [PATCH 15/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6618 rongqing.li
2014-07-22 6:16 ` [PATCH 16/16] gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6617 rongqing.li
2014-07-22 7:10 ` [PATCH 00/16] gst-ffmpeg: merge several CVE patches Rongqing Li
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1406006666.git.rongqing.li@windriver.com \
--to=rongqing.li@windriver.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.