diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2017-01-27 08:26:12 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-02-08 11:59:59 +0000 |
commit | 87ffd7ce2e8ece8b44ff3f1c219a74b3590cf14b (patch) | |
tree | ac01634ed4899eb71cbdd58984aa0d869e7e9686 /meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb | |
parent | b0c70bef015f1b2a30556a5db5e255592d5bf316 (diff) | |
download | openembedded-core-87ffd7ce2e8ece8b44ff3f1c219a74b3590cf14b.tar.gz openembedded-core-87ffd7ce2e8ece8b44ff3f1c219a74b3590cf14b.tar.bz2 openembedded-core-87ffd7ce2e8ece8b44ff3f1c219a74b3590cf14b.zip |
libxrender: CVE-2016-7949
Insufficient validation of server responses results
in overflow of previously reserved memory
Upstream patch:
https://cgit.freedesktop.org/xorg/lib/libXrender/commit/?id=9362c7ddd1af3b168953d0737877bc52d79c94f4
External References:
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7949
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Diffstat (limited to 'meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb')
-rw-r--r-- | meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb b/meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb index 44cb2e0ebb..eac367906c 100644 --- a/meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb +++ b/meta/recipes-graphics/xorg-lib/libxrender_0.9.9.bb @@ -19,5 +19,8 @@ XORG_PN = "libXrender" BBCLASSEXTEND = "native nativesdk" +SRC_URI += "file://CVE-2016-7949.patch \ + " + SRC_URI[md5sum] = "5db92962b124ca3a8147daae4adbd622" SRC_URI[sha256sum] = "fc2fe57980a14092426dffcd1f2d9de0987b9d40adea663bd70d6342c0e9be1a" |