diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2015-08-19 14:14:29 +0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-09-01 21:28:02 +0100 |
commit | 31e3d1bab6612d8116086f9ada048a0c094fb2c8 (patch) | |
tree | c1bf77100c731c5ad08a6492ad174dbdf48f1878 /meta/recipes-devtools/qemu/qemu_2.1.0.bb | |
parent | 0bd4b0c7ede8a52559e4bf05085a3f0d46a0a280 (diff) | |
download | openembedded-core-31e3d1bab6612d8116086f9ada048a0c094fb2c8.tar.gz openembedded-core-31e3d1bab6612d8116086f9ada048a0c094fb2c8.tar.bz2 openembedded-core-31e3d1bab6612d8116086f9ada048a0c094fb2c8.zip |
qemu-vnc: CVE-2014-7815
Fixes an uninitialized data structure use flaw in qemu-vnc
which allows remote attackers to cause a denial of service
(crash).
Upstream patch:
http://git.qemu.org/?p=qemu.git;a=commit;
h=b2f1d90530301d7915dddc8a750063757675b21a
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7815
http://www.securityfocus.com/bid/70998
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta/recipes-devtools/qemu/qemu_2.1.0.bb')
-rw-r--r-- | meta/recipes-devtools/qemu/qemu_2.1.0.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu_2.1.0.bb b/meta/recipes-devtools/qemu/qemu_2.1.0.bb index 5e5ecf00db..444a4220bd 100644 --- a/meta/recipes-devtools/qemu/qemu_2.1.0.bb +++ b/meta/recipes-devtools/qemu/qemu_2.1.0.bb @@ -9,6 +9,7 @@ SRC_URI += "file://configure-fix-Darwin-target-detection.patch \ file://0001-Back-porting-security-fix-CVE-2014-5388.patch \ file://qemu-CVE-2015-3456.patch \ file://CVE-2014-7840.patch \ + file://vnc-CVE-2014-7815.patch \ " SRC_URI_prepend = "http://wiki.qemu-project.org/download/${BP}.tar.bz2" SRC_URI[md5sum] = "6726977292b448cbc7f89998fac6983b" |