git.libre-soc.org Git - buildroot.git/commit

author	Fabrice Fontaine <fontaine.fabrice@gmail.com>
	Wed, 6 May 2020 22:09:14 +0000 (00:09 +0200)
committer	Thomas Petazzoni <thomas.petazzoni@bootlin.com>
	Sat, 9 May 2020 16:47:24 +0000 (18:47 +0200)
commit	aab52d8722b21cb1410e8e8957f81565b29352bb
tree	bbe071a4ecc188d2912b30091ed91de422519914	tree
parent	2452aa182dbf2fc7c1da9f5aa28709b8e431c58a	commit \| diff

package/ffmpeg: fix CVE-2020-12284

cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.2.2 has a
heap-based buffer overflow during JPEG_MARKER_SOS handling because of a
missing length check.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>

package/ffmpeg/0001-avcodec-cbs_jpeg-Check-length-for-SOS.patch	[new file with mode: 0644]	blob
package/ffmpeg/ffmpeg.mk		diff \| blob \| history

RSS Atom