summaryrefslogtreecommitdiffstats
path: root/meta-multimedia/recipes-multimedia/sox/sox_14.4.2.bb
Commit message (Collapse)AuthorAgeFilesLines
* recipes: Fix variable assignment whitespaceRichard Purdie2025-03-201-1/+1
| | | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2023-32627Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/0028-CVE-2023-32627-Filter-null-sampling-rate-in-VOC-code.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2022-31651Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2022-31651.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2022-31650Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2022-31650.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2021-40426Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2021-40426.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2021-33844Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2021-33844.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2021-23159 and CVE-2021-2317Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2021-23159.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: patch CVE-2021-3643 and CVE-2021-23210Peter Marko2025-03-161-0/+1
| | | | | | | | Use patch from Debian: https://salsa.debian.org/lts-team/packages/sox/-/blob/debian/14.4.2+git20190427-1+deb10u3/debian/patches/CVE-2021-3643.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: mark CVEs included in hash update as fixedPeter Marko2025-03-161-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | git log sox-14.4.2..HEAD | grep -o 'CVE-[0-9-]*' | sort -u CVE-2017-11332 CVE-2017-11358 CVE-2017-11359 CVE-2017-15370 CVE-2017-15371 CVE-2017-15372 CVE-2017-15642 CVE-2017-18189 CVE-2019-13590 CVE-2019-8354 CVE-2019-8355 CVE-2019-8356 CVE-2019-8357 Following remaining CVEs are handled in commits: CVE-2019-1010004 - NVD: https://nvd.nist.gov/vuln/detail/CVE-2019-1010004 - report: https://sourceforge.net/p/sox/bugs/299/ - patch: https://sourceforge.net/p/sox/code/ci/09d7388c8ad5701ed9c59d1d600ff6154b066397/ - same commit as CVE-2017-18189 as mentioned in NVD and bugreport texts - https://security-tracker.debian.org/tracker/CVE-2019-1010004 links it - it's only commit in src/xa.c in last 15 years Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: update to latest git hashPeter Marko2025-03-161-13/+13
| | | | | | | | | | | | | | | | | | | | | | | | Resolve many CVEs and other bugs. $ git describe --tags sox-14.4.2-184-gf3094754 $ git log -1 HEAD | grep Date: Date: Thu May 30 14:46:01 2024 +0100 Recipe changes: * removed 0001-Update-exported-symbol-list.patch this commit is included now * refreshed 0001-remove-the-error-line-and-live-without-file-type-det.patch * 0001-tests-Include-math.h-for-fabs-definition.patch affected file was deleted from sources * added autoconf-archive-native dependency for newly used AX_APPEND_COMPILE_FLAGS macro * changed some config options from with/without to enable/disable https://sourceforge.net/p/sox/code/ci/6ff0e9322f9891f5a6ac6c9b3bceffbfca16bec3/ * added +git to PV to indicate version not on hash Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: build from gitPeter Marko2025-03-161-3/+4
| | | | | | | | Last release was done in 2015 but development still continues. Switch to git sources to allow update. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: extend CVE_PRODUCTPeter Marko2025-03-161-0/+2
| | | | | | | | | | | | | | | Add all relevant items from queries: $ sqlite3 nvdcve_2-2.db sqlite> select vendor, product, count(*) from products where product like '%sox%' group by vendor, product; commugen|sox_365|1 libsox_project|libsox|1 sox|sox|3 sox_project|sox|10 sqlite> select vendor, product, count(*) from products where product like '%sound_exchange%' group by vendor, product; sound_exchange_project|sound_exchange|16 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: Fix build with GCC-14Khem Raj2024-05-231-0/+1
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: remove ffmpeg dependencyEnrico Scholz2023-04-051-1/+1
| | | | | | | | | | | | | ffmpeg format handler was removed from sox in 2013 ([1]). Drop it also from DEPENDS. This makes sox generally available without the need to whitelist the commercial ffmpeg license. [1] https://sourceforge.net/p/sox/code/ci/5ae4049727d4f29036ad541bde5863c850aa7755 Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: Enable -D_FILE_OFFSET_BITS=64 and depend on libtoolKhem Raj2022-09-121-1/+4
| | | | | | | | | | | We use 'dyn' for plugins and the logic depends on libltdl support therefore add the missing depenendency Fixes | configure: error: not using libltdl; cannot load alsa dynamically | See `config.log' for more details Signed-off-by: Khem Raj <raj.khem@gmail.com>
* recipes: Update LICENSE variable to use SPDX license identifiersKhem Raj2022-03-041-1/+1
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* All layers: Follow oe-core's variable name changesAndreas Müller2022-02-241-1/+1
| | | | | | | Auto rename performed by oe-core's convert-variable-renames.py 0.1 Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sox: Remove LICENSE_FLAGS = "commercial"Khem Raj2021-03-301-4/+0
| | | | | | | | Its not needed bitbake gives a better diagnostics when included in image deps without accepting commercial license Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Andreas Müller <schnitzeltony@gmail.com>
* sox: Exclude from world if commercial is not in inclusion listKhem Raj2021-03-301-0/+3
| | | | | | | It needs ffmpeg Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Andreas Müller <schnitzeltony@gmail.com>
* sox: backport fix for dynamically linked flac buildsIoan-Adrian Ratiu2018-03-161-0/+1
| | | | | | | | | | | | | | The sox project upstream is dead, non-responsive, and various developers started maintaining their own branches where they do feature development (eg. adding DSD/DSF format support) and bug-fixing. They don't have access to the central sox git repo. So basically the project will eventually get forked (I started a discussion in this direction). Until then, backport this flac build fix which was lingering around out of tree for years. Signed-off-by: Ioan-Adrian Ratiu <adrian.ratiu@ni.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* sox: bump 14.4.0 -> 14.4.2Ioan-Adrian Ratiu2018-03-011-0/+39
The big feature in the new version is opus codec support. Make the old vorbis codec optional via packageconfig. Remove sox-native because it's broken and nothing uses it. Refresh musl build-fix patch. Signed-off-by: Ioan-Adrian Ratiu <adrian.ratiu@ni.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>