Patchwork [dylan,0/4] CVE backports from the dora branch (cover letter only)

login
register
mail settings
Submitter Paul Eggleton
Date Dec. 12, 2013, 6:21 p.m.
Message ID <cover.1386870869.git.paul.eggleton@linux.intel.com>
Download mbox
Permalink /patch/63293/
State New
Headers show

Pull-request

git://git.openembedded.org/openembedded-core-contrib paule/dylan-next

Comments

Paul Eggleton - Dec. 12, 2013, 6:21 p.m.
All four of the CVE fixes in Robert's just-merged dora series apply to
dylan, so here they are on top of dylan.


The following changes since commit 4e31587ef3be95abe28d38609da16f47d1261c07:

  build-appliance-image: Update to dylan head revision (2013-12-12 17:05:02 +0000)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib paule/dylan-next
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=paule/dylan-next

Baogen Shang (2):
  libtiff: CVE-2013-4232
  libtiff: CVE-2013-4243

Ming Liu (2):
  gst-ffmpeg: fix CVE-2013-3674
  libtiff: fix CVE-2013-1960

 .../gst-ffmpeg-CVE-2013-3674.patch                 |  26 ++++
 .../gstreamer/gst-ffmpeg_0.10.13.bb                |   1 +
 .../libtiff/files/libtiff-CVE-2013-1960.patch      | 151 +++++++++++++++++++++
 .../libtiff/files/libtiff-CVE-2013-4232.patch      |  15 ++
 .../libtiff/files/libtiff-CVE-2013-4243.patch      |  40 ++++++
 meta/recipes-multimedia/libtiff/tiff_4.0.3.bb      |   5 +-
 6 files changed, 237 insertions(+), 1 deletion(-)
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/gst-ffmpeg-CVE-2013-3674.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-1960.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4232.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4243.patch