projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4f5584a) | patch
package/gst1-plugins-base: add upstream SA-2019-0001 security fix
authorPeter Korsgaard <peter@korsgaard.com>
Tue, 30 Apr 2019 06:05:31 +0000 (08:05 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Tue, 30 Apr 2019 11:17:37 +0000 (13:17 +0200)
commit99890750e0296ca29b61a315f78766261f6aee0e
tree4682cdd88bba603631e1f1f1a2ed385cdc81e1d3tree
parent4f5584af06dddb08acd7a0f290f304d1272805e3commit | diff
package/gst1-plugins-base: add upstream SA-2019-0001 security fix

Fixes the following security issue:

CVE-2019-9928: GStreamer before 1.16.0 has a heap-based buffer overflow in
the RTSP connection parser via a crafted response from a server

For more details, see the advisory:
https://gstreamer.freedesktop.org/security/sa-2019-0001.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/gstreamer1/gst1-plugins-base/0001-gstrtspconnection-Security-loophole-making-heap-over.patch [new file with mode: 0644] blob