git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

projects / thirdparty / openembedded / openembedded-core.git / commit

author	Narpat Mali <narpat.mali@windriver.com>
	Fri, 28 Apr 2023 16:58:32 +0000 (16:58 +0000)
committer	Steve Sakoman <steve@sakoman.com>
	Tue, 2 May 2023 15:21:11 +0000 (05:21 -1000)
commit	392f984ffd95bcd3ce4c364b40425e7808ca7719
tree	512ecae292cba1b0929794885a64e0eabec1619e	tree \| snapshot
parent	2d67702bdfc64358d364dd6484ae41842ee7c52f	commit \| diff

ffmpeg: fix for CVE-2022-48434

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and
other products, leaves stale hwaccel state in worker threads, which
allows attackers to trigger a use-after-free and execute arbitrary
code in some circumstances (e.g., hardware re-initialization upon a
mid-video SPS change when Direct3D11 is used).

Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2022-48434.patch	[new file with mode: 0644]	blob
meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.1.bb		diff \| blob \| blame \| history

Mirror of git://git.openembedded.org/openembedded-core

RSS Atom