NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
015a96b4e0
kumquat-buildroot/package/vlc
History
Bernd Kuhls 745b2496d6 package/vlc: security bump version to 3.0.8 
Release notes: https://www.videolan.org/developers/vlc-branch/NEWS

Fixes the following security bugs:
 * Fix a buffer overflow in the MKV demuxer (CVE-2019-14970)
 * Fix a read buffer overflow in the avcodec decoder (CVE-2019-13962)
 * Fix a read buffer overflow in the FAAD decoder
 * Fix a read buffer overflow in the OGG demuxer (CVE-2019-14437, CVE-2019-14438)
 * Fix a read buffer overflow in the ASF demuxer (CVE-2019-14776)
 * Fix a use after free in the MKV demuxer (CVE-2019-14777, CVE-2019-14778)
 * Fix a use after free in the ASF demuxer (CVE-2019-14533)
 * Fix a couple of integer underflows in the MP4 demuxer (CVE-2019-13602)
 * Fix a null dereference in the dvdnav demuxer
 * Fix a null dereference in the ASF demuxer (CVE-2019-14534)
 * Fix a null dereference in the AVI demuxer
 * Fix a division by zero in the CAF demuxer (CVE-2019-14498)
 * Fix a division by zero in the ASF demuxer (CVE-2019-14535)

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit ad9efda578)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-09-02 17:54:55 +02:00
..
0001-Disable-building-of-statically-linked-vlc-binary.patch
0002-lua-Define-LUA_COMPAT_APIINTCASTS-for-Lua-5.3.0-comp.patch
0003-automake-add-subdir-objects-option.patch
0004-build-use-pkg-config-to-get-tremor-libs.patch
0005-Fix-build-error-using-uClibc-by-adding-sys-types.h.patch
0006-Don-t-assume-strerror_l-is-available.patch
0007-posix-remove-ancient-run-time-fallback-to-real-time-.patch
0008-Add-support-for-freerdp2.patch
0009-configure.ac-also-use-AC_PATH_PROG-to-check-for-wayl.patch
Config.in
vlc.hash
vlc.mk