diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2016-03-03 10:58:35 +0100 |
---|---|---|
committer | Nora Björklund <nora.bjorklund@enea.com> | 2016-03-07 14:34:49 +0100 |
commit | f6f328f5d40e8d135fe1251ca13e2e521dd6aebf (patch) | |
tree | c3493b7d5e16867e7e27bf966e42678a9c9a94e1 /meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb | |
parent | a75cee30877e48e44e72a2f2f7d319f3eac575c9 (diff) | |
download | meta-openembedded-f6f328f5d40e8d135fe1251ca13e2e521dd6aebf.tar.gz |
libssh2: CVE-2016-0787dizzy-enea
bits/bytes confusion resulting in truncated Diffie-Hellman secret length
Reference:
https://www.libssh2.org/adv_20160223.html
Reference to upstream patch:
https://www.libssh2.org/CVE-2016-0787.patch
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
Diffstat (limited to 'meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb')
-rw-r--r-- | meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb b/meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb index b53766333..8f64cf03a 100644 --- a/meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb +++ b/meta-oe/recipes-support/libssh2/libssh2_1.4.3.bb | |||
@@ -1,4 +1,5 @@ | |||
1 | SUMMARY = "A client-side C library implementing the SSH2 protocol" | 1 | SUMMARY = "A client-side C library implementing the SSH2 protocol" |
2 | FILESEXTRAPATHS_prepend := "${THISDIR}/files:" | ||
2 | HOMEPAGE = "http://www.libssh2.org/" | 3 | HOMEPAGE = "http://www.libssh2.org/" |
3 | SECTION = "libs" | 4 | SECTION = "libs" |
4 | 5 | ||
@@ -7,7 +8,10 @@ DEPENDS = "zlib openssl" | |||
7 | LICENSE = "BSD" | 8 | LICENSE = "BSD" |
8 | LIC_FILES_CHKSUM = "file://COPYING;md5=d00afe44f336a79a2ca7e1681ce14509" | 9 | LIC_FILES_CHKSUM = "file://COPYING;md5=d00afe44f336a79a2ca7e1681ce14509" |
9 | 10 | ||
10 | SRC_URI = "http://www.libssh2.org/download/${BP}.tar.gz" | 11 | SRC_URI = "http://www.libssh2.org/download/${BP}.tar.gz \ |
12 | file://CVE-2016-0787.patch \ | ||
13 | " | ||
14 | |||
11 | SRC_URI[md5sum] = "071004c60c5d6f90354ad1b701013a0b" | 15 | SRC_URI[md5sum] = "071004c60c5d6f90354ad1b701013a0b" |
12 | SRC_URI[sha256sum] = "eac6f85f9df9db2e6386906a6227eb2cd7b3245739561cad7d6dc1d5d021b96d" | 16 | SRC_URI[sha256sum] = "eac6f85f9df9db2e6386906a6227eb2cd7b3245739561cad7d6dc1d5d021b96d" |
13 | 17 | ||