From ea692a1ceac9a9c416d2ecf1a748882df30068ba Mon Sep 17 00:00:00 2001 From: tigro Date: Tue, 24 Oct 2023 11:26:08 +0300 Subject: [PATCH] Update patch --- .../0002-Fixes-ZDI-CAN-21768-CVE-2023-40476.patch | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/SOURCES/0002-Fixes-ZDI-CAN-21768-CVE-2023-40476.patch b/SOURCES/0002-Fixes-ZDI-CAN-21768-CVE-2023-40476.patch index de90f00..ca052d9 100644 --- a/SOURCES/0002-Fixes-ZDI-CAN-21768-CVE-2023-40476.patch +++ b/SOURCES/0002-Fixes-ZDI-CAN-21768-CVE-2023-40476.patch @@ -1,6 +1,6 @@ -From 1f9a7c6b4f658e0bbc6cb3638a8932680dbcff54 Mon Sep 17 00:00:00 2001 +From 48c51c00f8d5c1d81bceb7139c5fe90fd4ce9a9c Mon Sep 17 00:00:00 2001 From: tigro -Date: Tue, 24 Oct 2023 08:50:09 +0300 +Date: Tue, 24 Oct 2023 11:25:31 +0300 Subject: [PATCH 2/2] Fixes ZDI-CAN-21768, CVE-2023-40476 --- @@ -8,10 +8,10 @@ Subject: [PATCH 2/2] Fixes ZDI-CAN-21768, CVE-2023-40476 1 file changed, 2 insertions(+) diff --git a/gst-libs/gst/codecparsers/gsth265parser.c b/gst-libs/gst/codecparsers/gsth265parser.c -index fe775a8..44b7237 100644 +index 26e68b2..8bd2144 100644 --- a/gst-libs/gst/codecparsers/gsth265parser.c +++ b/gst-libs/gst/codecparsers/gsth265parser.c -@@ -1845,6 +1845,7 @@ gst_h265_parse_vps (GstH265NalUnit * nalu, GstH265VPS * vps) +@@ -1656,6 +1656,7 @@ gst_h265_parse_vps (GstH265NalUnit * nalu, GstH265VPS * vps) READ_UINT8 (&nr, vps->max_layers_minus1, 6); READ_UINT8 (&nr, vps->max_sub_layers_minus1, 3); @@ -19,8 +19,8 @@ index fe775a8..44b7237 100644 READ_UINT8 (&nr, vps->temporal_id_nesting_flag, 1); /* skip reserved_0xffff_16bits */ -@@ -2015,6 +2016,7 @@ gst_h265_parse_sps (GstH265Parser * parser, GstH265NalUnit * nalu, - READ_UINT8 (&nr, sps->vps_id, 4); +@@ -1834,6 +1835,7 @@ gst_h265_parse_sps (GstH265Parser * parser, GstH265NalUnit * nalu, + sps->vps = vps; READ_UINT8 (&nr, sps->max_sub_layers_minus1, 3); + CHECK_ALLOWED (sps->max_sub_layers_minus1, 0, 6);