Skip to content
Commit ccf97c35 authored by Tanu Kaskinen's avatar Tanu Kaskinen Committed by Richard Purdie
Browse files

libvorbis: CVE-2018-5146

Prevent out-of-bounds write in codebook decoding. The bug could allow
code execution from a specially crafted Ogg Vorbis file.

References:
https://www.debian.org/security/2018/dsa-4140
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5146



(From OE-Core rev: 7d5d262c03745e5c61e1e9c84f108d842d16e5ec)

Signed-off-by: default avatarTanu Kaskinen <tanuk@iki.fi>
Signed-off-by: default avatarRichard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: default avatarArmin Kuster <akuster808@gmail.com>
parent ccbef384
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment