ffmpeg: fix CVE-2025-1373

author Colin Pinnell McAllister <colin.mcallister@garmin.com>

Mon, 16 Jun 2025 15:42:02 +0000 (10:42 -0500)

committer Steve Sakoman <steve@sakoman.com>

Mon, 16 Jun 2025 16:49:07 +0000 (09:49 -0700)
author Colin Pinnell McAllister <colin.mcallister@garmin.com>
Mon, 16 Jun 2025 15:42:02 +0000 (10:42 -0500)
committer Steve Sakoman <steve@sakoman.com>
Mon, 16 Jun 2025 16:49:07 +0000 (09:49 -0700)
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb b/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb

index 4ae444258f012097924885c6f275e0f38b05d9bf..ae257a392651a01983be42d14066687c56193c12 100644 (file)
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb
@@ -81,6 +81,11 @@ CVE_CHECK_IGNORE += "CVE-2024-22862"
  # bugfix: https://github.com/FFmpeg/FFmpeg/commit/9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6
  CVE_CHECK_IGNORE += "CVE-2024-7272"
  
+# Vulnerable code not present in any release
+# introduced: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/19f7dae81ab2c19643b97da7556383ee3f721e78
+# bugfix: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/43be8d07281caca2e88bfd8ee2333633e1fb1a13
+CVE_CHECK_IGNORE += "CVE-2025-1373"
+
  # Build fails when thumb is enabled: https://bugzilla.yoctoproject.org/show_bug.cgi?id=7717
  ARM_INSTRUCTION_SET:armv4 = "arm"
  ARM_INSTRUCTION_SET:armv5 = "arm"
author	Colin Pinnell McAllister <colin.mcallister@garmin.com>
	Mon, 16 Jun 2025 15:42:02 +0000 (10:42 -0500)
committer	Steve Sakoman <steve@sakoman.com>
	Mon, 16 Jun 2025 16:49:07 +0000 (09:49 -0700)