ffmpeg: Correct the CVE ID to fix CVE-2025-22919

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows
attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
similarity index 98%
rename from meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch
rename to meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
index 6af01b298f35483673bc0df3c38b5de571b57d2a..f895576de3cbe54f328d706cba52f66c5cca9ac2 100644 (file)
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
@@ -10,7 +10,7 @@ Fixes ticket #11385.
 
 Signed-off-by: James Almer <jamrial@gmail.com>
 
-CVE: CVE-2025-25471
+CVE: CVE-2025-22919
 
 Upstream-Status: Backport [https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322]
 

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb b/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
index 06ca65a48022bb6c87cbcb757cd35d2ddf893c6c..3d766c3fc7e63dcdcc6b97fe25918cc89716f6d4 100644 (file)
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
@@ -48,7 +48,7 @@ SRC_URI = " \
     file://CVE-2024-36619.patch \
     file://CVE-2024-35369.patch \
     file://CVE-2025-25473.patch \
-    file://CVE-2025-25471.patch \
+    file://CVE-2025-22919.patch \
     file://CVE-2025-22921.patch \
     file://CVE-2025-0518.patch \
 "