diff options
author | Armin Kuster <akuster@mvista.com> | 2016-02-11 16:20:34 -0800 |
---|---|---|
committer | Joshua Lock <joshua.g.lock@intel.com> | 2016-02-18 10:54:22 +0000 |
commit | ab29efb8e85020a3621079c7fde217c1bfaa5289 (patch) | |
tree | ba4ada675bce1213a189803d66cd4842d56265e8 /meta/recipes-support/libbsd/libbsd_0.7.0.bb | |
parent | ed6299ab0970d836d6719795531458078ba4cbf6 (diff) | |
download | openembedded-core-ab29efb8e85020a3621079c7fde217c1bfaa5289.tar.gz openembedded-core-ab29efb8e85020a3621079c7fde217c1bfaa5289.tar.bz2 openembedded-core-ab29efb8e85020a3621079c7fde217c1bfaa5289.zip |
libbsd: Security fix CVE-2016-2090
CVE-2016-2090 Heap buffer overflow in fgetwln function of libbsd
affects libbsd <= 0.8.1 (and therefore not needed in master)
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Joshua Lock <joshua.g.lock@intel.com>
Diffstat (limited to 'meta/recipes-support/libbsd/libbsd_0.7.0.bb')
-rw-r--r-- | meta/recipes-support/libbsd/libbsd_0.7.0.bb | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-support/libbsd/libbsd_0.7.0.bb b/meta/recipes-support/libbsd/libbsd_0.7.0.bb index 902666da7f..8d9a708a15 100644 --- a/meta/recipes-support/libbsd/libbsd_0.7.0.bb +++ b/meta/recipes-support/libbsd/libbsd_0.7.0.bb @@ -13,7 +13,9 @@ LIC_FILES_CHKSUM = "file://COPYING;md5=f1530ea92aeaa1c5e2547cfd43905d8c" SECTION = "libs" DEPENDS = "" -SRC_URI = "http://libbsd.freedesktop.org/releases/${BPN}-${PV}.tar.xz" +SRC_URI = "http://libbsd.freedesktop.org/releases/${BPN}-${PV}.tar.xz \ + file://CVE-2016-2090.patch \ + " SRC_URI[md5sum] = "fcceb4e66fd448ca4ed42ba22a8babb0" SRC_URI[sha256sum] = "0f3b0e17e5c34c038126e0a04351b11e23c6101a7d0ce3beeab29bb6415c10bb" |