godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-06 18:09:44 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2019.02.x
buildroot/package/libvorbis
History
Fabrice Fontaine a8cf4afce1 package/libvorbis: annote CVE-2018-10393 
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a
stack-based buffer over-read.

Same patch as for CVE-2017-14160

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[yann.morin.1998@free.fr:
  - update 0001-*.patch to also reference CVE-2018-10393
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
(cherry picked from commit e21730db5c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-03-14 19:39:21 +01:00
..
0001-CVE-2017-14160-fix-bounds-check-on-very-low-sample-rates.patch
package/libvorbis: annote CVE-2018-10393
2020-03-14 19:39:21 +01:00
0002-Sanity-check-number-of-channels-in-setup.patch
Config.in
libvorbis.hash
libvorbis.mk
package/libvorbis: annote CVE-2018-10393
2020-03-14 19:39:21 +01:00