diff mbox series

[scarthgap,V2,1/1] ffmpeg: Correct the CVE ID to fix CVE-2025-22919

Message ID 20250306065923.3070545-1-archana.polampalli@windriver.com
State Accepted
Delegated to: Steve Sakoman
Headers show
Series [scarthgap,V2,1/1] ffmpeg: Correct the CVE ID to fix CVE-2025-22919 | expand

Commit Message

Polampalli, Archana March 6, 2025, 6:59 a.m. UTC 
From: Archana Polampalli <archana.polampalli@windriver.com>

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows
attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
---
 .../ffmpeg/{CVE-2025-25471.patch => CVE-2025-22919.patch}       | 2 +-
 meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb                  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-multimedia/ffmpeg/ffmpeg/{CVE-2025-25471.patch => CVE-2025-22919.patch} (98%)
diff mbox series

Patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
similarity index 98%
rename from meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch
rename to meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
index 6af01b298f..f895576de3 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-25471.patch
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22919.patch
@@ -10,7 +10,7 @@  Fixes ticket #11385.
 
 Signed-off-by: James Almer <jamrial@gmail.com>
 
-CVE: CVE-2025-25471
+CVE: CVE-2025-22919
 
 Upstream-Status: Backport [https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322]
 
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb b/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
index 6af43bcf37..5ebaa4353b 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb
@@ -48,7 +48,7 @@  SRC_URI = " \
     file://CVE-2024-36619.patch \
     file://CVE-2024-35369.patch \
     file://CVE-2025-25473.patch \
-    file://CVE-2025-25471.patch \
+    file://CVE-2025-22919.patch \
 "
 
 SRC_URI[sha256sum] = "8684f4b00f94b85461884c3719382f1261f0d9eb3d59640a1f4ac0873616f968"