diff options
| author | Peter Korsgaard <peter@korsgaard.com> | 2017-03-30 23:03:32 +0200 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-04-03 10:31:40 +0200 |
| commit | 5e24ed52e4513ed49810455a91c70f496efbc9cc (patch) | |
| tree | 05c77a3057baaa5d720b22e32dff54970670ccda /package/python-bitstring/python-bitstring.mk | |
| parent | 4f533d049ae78647431a9384206b8fe8733b61d9 (diff) | |
| download | buildroot-5e24ed52e4513ed49810455a91c70f496efbc9cc.tar.gz buildroot-5e24ed52e4513ed49810455a91c70f496efbc9cc.zip | |
audiofile: add security patch for CVE-2017-6829
The decodeSample function in IMA.cpp in Audio File Library (aka audiofile)
0.3.6 allows remote attackers to cause a denial of service (crash) via a
crafted file.
https://blogs.gentoo.org/ago/2017/02/20/audiofile-global-buffer-overflow-in-decodesample-ima-cpp
https://github.com/mpruett/audiofile/issues/33
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 434890df2a7c131b40fec1c49e6239972ab299d2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/python-bitstring/python-bitstring.mk')
0 files changed, 0 insertions, 0 deletions

