]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
libjpeg-turbo: patch CVE-2023-2804
authorPeter Marko <peter.marko@siemens.com>
Sun, 23 Jul 2023 11:44:14 +0000 (13:44 +0200)
committerSteve Sakoman <steve@sakoman.com>
Fri, 4 Aug 2023 15:44:24 +0000 (05:44 -1000)
commitcb3c7efd313f758e9bade93b72527bc5dc470085
tree32d42309840eb091e57ab234d385e1a935049d33
parentb66a677b76c7f15eb5c426f8dc7ac42e1e2e3f40
libjpeg-turbo: patch CVE-2023-2804

Relevant links:
* linked fronm NVD:
  * https://github.com/libjpeg-turbo/libjpeg-turbo/issues/668#issuecomment-1492586118
* follow-up analysis:
  * https://github.com/libjpeg-turbo/libjpeg-turbo/issues/668#issuecomment-1496473989
  * picked commits fix all issues mentioned in this analysis

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-graphics/jpeg/files/CVE-2023-2804-1.patch [new file with mode: 0644]
meta/recipes-graphics/jpeg/files/CVE-2023-2804-2.patch [new file with mode: 0644]
meta/recipes-graphics/jpeg/libjpeg-turbo_2.0.4.bb