Google Git
Sign in
android-kvm / buildroot / eca03d677448000f9c5387e8359c116508e03f79
commiteca03d677448000f9c5387e8359c116508e03f79[log] [tgz]
authorPeter Korsgaard <peter@korsgaard.com>Fri Mar 16 22:35:29 2018 +0100
committerPeter Korsgaard <peter@korsgaard.com>Sat Mar 17 11:43:01 2018 +0100
treeb20a81213877721106130b9840c85671b1ecc9d7
parentb71a4e2067996beb102aaef6af6f14356c95be8f [diff]
libvorbis: security bump to version 1.3.6

Fixes CVE-2018-5146: Prevent out-of-bounds write in codebook decoding.

Drop 0001-CVE-2017-14633-Don-t-allow-for-more-than-256-channel.patch and
0002-CVE-2017-14632-vorbis_analysis_header_out-Don-t-clea.patch as they are
now upstream, and add a hash for the license file while we're at it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 files changed
tree: b20a81213877721106130b9840c85671b1ecc9d7
  1. arch/
  2. board/
  3. boot/
  4. configs/
  5. docs/
  6. fs/
  7. linux/
  8. package/
  9. support/
  10. system/
  11. toolchain/
  12. utils/
  13. .defconfig
  14. .flake8
  15. .gitignore
  16. .gitlab-ci.yml
  17. .gitlab-ci.yml.in
  18. CHANGES
  19. Config.in
  20. Config.in.legacy
  21. COPYING
  22. DEVELOPERS
  23. Makefile
  24. Makefile.legacy
  25. README