NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
d8396da40d
kumquat-buildroot/package/ffmpeg
History
Bernd Kuhls 049221fd03 package/ffmpeg: security bump to version 4.3.2 
Fixes the following security issues:

- CVE-2020-35964: track_header in libavformat/vividas.c in FFmpeg 4.3.1 has
  an out-of-bounds write because of incorrect extradata packing.

- CVE-2020-35965: decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an
  out-of-bounds write because of errors in calculations of when to perform
  memset zero operations.

Removed patch which was applied upstream:
ca55240b8c

Changelog:
http://git.videolan.org/?p=ffmpeg.git;a=blob;f=Changelog;h=28d79ea1aed0a59f43ee922f5b6efa82dc7e2b18;hb=refs/heads/release/4.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 2a3cfb2381)
[Peter: mark as security fix, extend commit message]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2021-04-24 16:25:37 +02:00
..
0001-swscale-x86-yuv2rgb-Fix-build-without-SSSE3.patch
0002-configure-use-require_pkg_config-to-check-for-wavpac.patch
0003-avcodec-vaapi_h264-skip-decode-if-pic-has-no-slices.patch
Config.in
ffmpeg.hash package/ffmpeg: security bump to version 4.3.2 2021-04-24 16:25:37 +02:00
ffmpeg.mk package/ffmpeg: security bump to version 4.3.2 2021-04-24 16:25:37 +02:00