From: Peter Marko <[email protected]> Pick patch metioned in NVD report.
Signed-off-by: Peter Marko <[email protected]> --- .../ffmpeg/ffmpeg/CVE-2025-10256.patch | 31 +++++++++++++++++++ .../recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb | 1 + 2 files changed, 32 insertions(+) create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-10256.patch diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-10256.patch b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-10256.patch new file mode 100644 index 00000000000..6c5f98efe2f --- /dev/null +++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-10256.patch @@ -0,0 +1,31 @@ +From a25462482c02c004d685a8fcf2fa63955aaa0931 Mon Sep 17 00:00:00 2001 +From: Jiasheng Jiang <[email protected]> +Date: Wed, 6 Aug 2025 16:39:47 +0000 +Subject: [PATCH] libavfilter/af_firequalizer: Add check for av_malloc_array() + +Add check for the return value of av_malloc_array() to avoid potential NULL pointer dereference. + +Fixes: d3be186ed1 ("avfilter/firequalizer: add dumpfile and dumpscale option") +Signed-off-by: Jiasheng Jiang <[email protected]> +Signed-off-by: Michael Niedermayer <[email protected]> + +CVE: CVE-2025-10256 +Upstream-Status: Backport [https://github.com/FFmpeg/FFmpeg/commit/a25462482c02c004d685a8fcf2fa63955aaa0931] +Signed-off-by: Peter Marko <[email protected]> +--- + libavfilter/af_firequalizer.c | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/libavfilter/af_firequalizer.c b/libavfilter/af_firequalizer.c +index 38663200eb..f14983b431 100644 +--- a/libavfilter/af_firequalizer.c ++++ b/libavfilter/af_firequalizer.c +@@ -793,6 +793,8 @@ static int config_input(AVFilterLink *inlink) + if (s->dumpfile) { + s->analysis_rdft = av_rdft_init(rdft_bits, DFT_R2C); + s->dump_buf = av_malloc_array(s->analysis_rdft_len, sizeof(*s->dump_buf)); ++ if (!s->dump_buf) ++ return AVERROR(ENOMEM); + } + + s->analysis_buf = av_malloc_array(s->analysis_rdft_len, sizeof(*s->analysis_buf)); diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb b/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb index 4793035eb72..f89fb2d0d78 100644 --- a/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb +++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb @@ -53,6 +53,7 @@ SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \ file://CVE-2023-6602-CVE-2023-6604-CVE-2023-6605-0002.patch \ file://CVE-2023-6602-CVE-2023-6604-CVE-2023-6605-0003.patch \ file://CVE-2025-1594.patch \ + file://CVE-2025-10256.patch \ " SRC_URI[sha256sum] = "04c70c377de233a4b217c2fdf76b19aeb225a287daeb2348bccd978c47b1a1db"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#232132): https://lists.openembedded.org/g/openembedded-core/message/232132 Mute This Topic: https://lists.openembedded.org/mt/118067507/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
