MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2025-12-14 22:35:25 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

audiofile: mark CVE-2020-18781 as patched

Browse Source 
Per [1] this CVE is already patched by commit [2].

This can be also verified with yocto build.

Running without this patch:
root@qemux86-64:~# sfconvert poc.wav output format wave
malloc(): corrupted top size
Aborted

Running with it:
root@qemux86-64:~# sfconvert poc.wav output format wave
Audio File Library: Bad number of coefficients [error 62]
Could not open file 'poc.wav' for reading.

[1] https://github.com/mpruett/audiofile/issues/56
[2] c48e4c6503

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This commit is contained in:
Peter Marko 2025-01-17 20:33:21 +01:00 committed by Khem Raj
parent 4108165248
commit 68f55c158e
No known key found for this signature in database
GPG Key ID: BB053355919D3314
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
meta-oe/recipes-multimedia/audiofile/files/0004-Always-check-the-number-of-coefficients.patch
View File

@ -17,6 +17,7 @@ CVE: CVE-2017-6832
CVE: CVE-2017-6833
CVE: CVE-2017-6835
CVE: CVE-2017-6837
CVE: CVE-2020-18781
Upstream-Status: Inactive-Upstream [lastrelease: 2013]
Signed-off-by: Peter Marko <peter.marko@siemens.com>
---