Patchwork [00/12] forward 12 CVE patches for ffmpeg

login
register
mail settings
Submitter rongqing.li@windriver.com
Date May 15, 2014, 2:03 a.m.
Message ID <cover.1400118419.git.rongqing.li@windriver.com>
Download mbox
Permalink /patch/72179/
State New
Headers show

Pull-request

git://git.pokylinux.org/poky-contrib roy/ffmpeg-1

Comments

rongqing.li@windriver.com - May 15, 2014, 2:03 a.m.
From: Roy Li <rongqing.li@windriver.com>

The following changes since commit 58417093d7ce83c8a2f683a356fddc23aaee5e8e:

  wic: Extend indirect string connection to support image names and rootfs (2014-05-13 19:35:06 +0100)

are available in the git repository at:

  git://git.pokylinux.org/poky-contrib roy/ffmpeg-1
  http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=roy/ffmpeg-1

Yue Tao (12):
  Security Advisory - ffmpeg - CVE-2014-2263
  Security Advisory - ffmpeg - CVE-2013-0865
  Security Advisory - ffmpeg - CVE-2014-2099
  Security Advisory - ffmpeg - CVE-2013-0868
  Security Advisory - ffmpeg - CVE-2013-0845
  Security Advisory - ffmpeg - CVE-2013-0852
  Security Advisory - ffmpeg - CVE-2013-0858
  Security Advisory - ffmpeg - CVE-2013-0851
  Security Advisory - ffmpeg - CVE-2013-0854
  Security Advisory - ffmpeg - CVE-2013-0856
  Security Advisory - ffmpeg - CVE-2013-0850
  Security Advisory - ffmpeg - CVE-2013-0849

 .../0001-alac-fix-nb_samples-order-case.patch      |   30 +++++++
 .../0001-alsdec-check-block-length.patch           |   61 ++++++++++++++
 ...ac3dec-Check-coding-mode-against-channels.patch |   37 +++++++++
 ...le-use-av_image_get_linesize-to-calculate.patch |   48 +++++++++++
 ...egtsenc-Check-data-array-size-in-mpegts_w.patch |   67 +++++++++++++++
 .../0001-eamad-fix-out-of-array-accesses.patch     |   29 +++++++
 ...t-ref-count-check-and-limit-fix-out-of-ar.patch |   29 +++++++
 ...01-huffyuvdec-Check-init_vlc-return-codes.patch |   87 ++++++++++++++++++++
 .../0001-huffyuvdec-Skip-len-0-cases.patch         |   59 +++++++++++++
 .../0001-mjpegdec-check-SE.patch                   |   32 +++++++
 ...heck-RLE-size-before-copying.-Fix-out-of-.patch |   34 ++++++++
 ...001-roqvideodec-check-dimensions-validity.patch |   36 ++++++++
 ...o-check-chunk-sizes-before-reading-chunks.patch |   49 +++++++++++
 .../gstreamer/gst-ffmpeg_0.10.13.bb                |   13 +++
 14 files changed, 611 insertions(+)
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-alac-fix-nb_samples-order-case.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-alsdec-check-block-length.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-atrac3dec-Check-coding-mode-against-channels.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-avcodec-msrle-use-av_image_get_linesize-to-calculate.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-avformat-mpegtsenc-Check-data-array-size-in-mpegts_w.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-eamad-fix-out-of-array-accesses.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-h264-correct-ref-count-check-and-limit-fix-out-of-ar.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-huffyuvdec-Check-init_vlc-return-codes.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-huffyuvdec-Skip-len-0-cases.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-mjpegdec-check-SE.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-pgssubdec-check-RLE-size-before-copying.-Fix-out-of-.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-roqvideodec-check-dimensions-validity.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gst-ffmpeg-0.10.13/0001-vqavideo-check-chunk-sizes-before-reading-chunks.patch
Paul Eggleton - May 15, 2014, 8:51 a.m.
Hi Roy,

On Thursday 15 May 2014 10:03:50 rongqing.li@windriver.com wrote:
> From: Roy Li <rongqing.li@windriver.com>
> 
> The following changes since commit 58417093d7ce83c8a2f683a356fddc23aaee5e8e:
> 
>   wic: Extend indirect string connection to support image names and rootfs
> (2014-05-13 19:35:06 +0100)
> 
> are available in the git repository at:
> 
>   git://git.pokylinux.org/poky-contrib roy/ffmpeg-1
>   http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=roy/ffmpeg-1
> 
> Yue Tao (12):
>   Security Advisory - ffmpeg - CVE-2014-2263
>   Security Advisory - ffmpeg - CVE-2013-0865
>   Security Advisory - ffmpeg - CVE-2014-2099
>   Security Advisory - ffmpeg - CVE-2013-0868
>   Security Advisory - ffmpeg - CVE-2013-0845
>   Security Advisory - ffmpeg - CVE-2013-0852
>   Security Advisory - ffmpeg - CVE-2013-0858
>   Security Advisory - ffmpeg - CVE-2013-0851
>   Security Advisory - ffmpeg - CVE-2013-0854
>   Security Advisory - ffmpeg - CVE-2013-0856
>   Security Advisory - ffmpeg - CVE-2013-0850
>   Security Advisory - ffmpeg - CVE-2013-0849

Note that whilst we should apply these patches, they won't actually have any 
effect on unmodified builds because we do not use gst-ffmpeg's internal copy of 
ffmpeg, we use libav instead. So if any of these fixes apply to libav (or if 
there are equivalent fixes) we will need to apply them to libav.

Cheers,
Paul
Otavio Salvador - May 15, 2014, 4:46 p.m.
On Thu, May 15, 2014 at 5:51 AM, Paul Eggleton
<paul.eggleton@linux.intel.com> wrote:
> Hi Roy,
>
> On Thursday 15 May 2014 10:03:50 rongqing.li@windriver.com wrote:
>> From: Roy Li <rongqing.li@windriver.com>
>>
>> The following changes since commit 58417093d7ce83c8a2f683a356fddc23aaee5e8e:
>>
>>   wic: Extend indirect string connection to support image names and rootfs
>> (2014-05-13 19:35:06 +0100)
>>
>> are available in the git repository at:
>>
>>   git://git.pokylinux.org/poky-contrib roy/ffmpeg-1
>>   http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=roy/ffmpeg-1
>>
>> Yue Tao (12):
>>   Security Advisory - ffmpeg - CVE-2014-2263
>>   Security Advisory - ffmpeg - CVE-2013-0865
>>   Security Advisory - ffmpeg - CVE-2014-2099
>>   Security Advisory - ffmpeg - CVE-2013-0868
>>   Security Advisory - ffmpeg - CVE-2013-0845
>>   Security Advisory - ffmpeg - CVE-2013-0852
>>   Security Advisory - ffmpeg - CVE-2013-0858
>>   Security Advisory - ffmpeg - CVE-2013-0851
>>   Security Advisory - ffmpeg - CVE-2013-0854
>>   Security Advisory - ffmpeg - CVE-2013-0856
>>   Security Advisory - ffmpeg - CVE-2013-0850
>>   Security Advisory - ffmpeg - CVE-2013-0849
>
> Note that whilst we should apply these patches, they won't actually have any
> effect on unmodified builds because we do not use gst-ffmpeg's internal copy of
> ffmpeg, we use libav instead. So if any of these fixes apply to libav (or if
> there are equivalent fixes) we will need to apply them to libav.

And please rework the commit logs for:

ffmpeg: fix for Security Advisory CVE-2013-0849

or anything similar, per your personal choice. But please put the
recipe name as prefix.