diff options
| author | Shan Hai <shan.hai@windriver.com> | 2014-07-28 01:18:50 -0400 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2014-07-29 09:56:44 +0100 |
| commit | f9d7407e54f1fa3d3a316a5bbb8b80665e6f03fd (patch) | |
| tree | 148dcb8e68ff1c077ae5075aed097c00ea5ad2f8 /scripts/lib | |
| parent | 5cba414e3fd7dbe761a6f628c6a368a412c0cba3 (diff) | |
| download | openembedded-core-f9d7407e54f1fa3d3a316a5bbb8b80665e6f03fd.tar.gz openembedded-core-f9d7407e54f1fa3d3a316a5bbb8b80665e6f03fd.tar.bz2 openembedded-core-f9d7407e54f1fa3d3a316a5bbb8b80665e6f03fd.zip | |
pulseaudio: fix CVE-2014-3970
The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module
in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of
service (assertion failure and abort) via an empty UDP packet.
Fix it by picking a patch from pulseaudio upstream code.
Signed-off-by: Shan Hai <shan.hai@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'scripts/lib')
0 files changed, 0 insertions, 0 deletions