]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
flac: fix CVE-2020-22219
authorMeenali Gupta <meenali.gupta@windriver.com>
Thu, 7 Sep 2023 18:00:56 +0000 (18:00 +0000)
committerSteve Sakoman <steve@sakoman.com>
Tue, 12 Sep 2023 22:47:53 +0000 (12:47 -1000)
commit29c6287287c9f26c1d6f9fddf8d2852409bbbbec
treee5dd853ba741100d23ac6aa21ef263c316f314ad
parent9a2ad95caffae37014fa27d9b20d45f9779d0fbf
flac: fix CVE-2020-22219

Buffer Overflow vulnerability in function bitwriter_grow_ in flac before
1.4.0 allows remote attackers to run arbitrary code via crafted input to
the encoder.

Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-multimedia/flac/files/CVE-2020-22219.patch [new file with mode: 0644]
meta/recipes-multimedia/flac/flac_1.3.4.bb