diff options
| author | Robert Yang <liezhi.yang@windriver.com> | 2015-03-25 23:42:34 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-04-17 22:38:34 +0100 |
| commit | e2032c5788f7a77aa0e4e8545b550551c23a25fb (patch) | |
| tree | ce816324d5bbe8ca841bec387f21c195d132c25a /meta/recipes-devtools/patch/patch_2.7.1.bb | |
| parent | 67ac6070b1b11a3459ed8fd7e145eb476e493dc6 (diff) | |
| download | openembedded-core-e2032c5788f7a77aa0e4e8545b550551c23a25fb.tar.gz openembedded-core-e2032c5788f7a77aa0e4e8545b550551c23a25fb.tar.bz2 openembedded-core-e2032c5788f7a77aa0e4e8545b550551c23a25fb.zip | |
patch: fix CVE-2015-1196
A directory traversal flaw was reported in patch:
References:
http://www.openwall.com/lists/oss-security/2015/01/18/6
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775227
https://bugzilla.redhat.com/show_bug.cgi?id=1182154
[YOCTO #7182]
(From OE-Core rev: 4c389880dc9c6221344f7aed221fe8356e8c2056)
Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta/recipes-devtools/patch/patch_2.7.1.bb')
| -rw-r--r-- | meta/recipes-devtools/patch/patch_2.7.1.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/patch/patch_2.7.1.bb b/meta/recipes-devtools/patch/patch_2.7.1.bb index 3db318a7ec..1a3b9b1201 100644 --- a/meta/recipes-devtools/patch/patch_2.7.1.bb +++ b/meta/recipes-devtools/patch/patch_2.7.1.bb @@ -1,6 +1,7 @@ require patch.inc LICENSE = "GPLv3" +SRC_URI += "file://patch-CVE-2015-1196.patch" SRC_URI[md5sum] = "95dd8d7e41dcbcecdd5cd88ef915378d" SRC_URI[sha256sum] = "c05f28668c3474bc63adcd48abae921d15e71c254fbebdbaeda40456d64039d5" |