diff options
author | Steve Sakoman <steve@sakoman.com> | 2022-03-25 07:11:50 -1000 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2022-03-31 21:09:33 +0100 |
commit | 4391ddecb2c5903a4c00d62646add0988a79c6d9 (patch) | |
tree | 7923756bd1cd8ed241575be5c6cec8d247d54015 | |
parent | 92b8b18ca9cd01b3d7a2bf2332cfb8a4cb07a555 (diff) | |
download | poky-4391ddecb2c5903a4c00d62646add0988a79c6d9.tar.gz |
ghostscript: fix CVE-2020-15900 and CVE-2021-45949 for -native
CVE patches (and the stack limits check patch) should have been
added to SRC_URI_BASE so that they are applied for both target
and -native packages.
(From OE-Core rev: da9b7b8973913c80c989aee1f5b34c98362725a8)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r-- | meta/recipes-extended/ghostscript/ghostscript_9.52.bb | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb b/meta/recipes-extended/ghostscript/ghostscript_9.52.bb index ac3d0dca43..310c4f6d24 100644 --- a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb +++ b/meta/recipes-extended/ghostscript/ghostscript_9.52.bb | |||
@@ -33,14 +33,14 @@ SRC_URI_BASE = "https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d | |||
33 | file://do-not-check-local-libpng-source.patch \ | 33 | file://do-not-check-local-libpng-source.patch \ |
34 | file://avoid-host-contamination.patch \ | 34 | file://avoid-host-contamination.patch \ |
35 | file://mkdir-p.patch \ | 35 | file://mkdir-p.patch \ |
36 | file://CVE-2020-15900.patch \ | ||
37 | file://check-stack-limits-after-function-evalution.patch \ | ||
38 | file://CVE-2021-45949.patch \ | ||
36 | " | 39 | " |
37 | 40 | ||
38 | SRC_URI = "${SRC_URI_BASE} \ | 41 | SRC_URI = "${SRC_URI_BASE} \ |
39 | file://ghostscript-9.21-prevent_recompiling.patch \ | 42 | file://ghostscript-9.21-prevent_recompiling.patch \ |
40 | file://cups-no-gcrypt.patch \ | 43 | file://cups-no-gcrypt.patch \ |
41 | file://CVE-2020-15900.patch \ | ||
42 | file://check-stack-limits-after-function-evalution.patch \ | ||
43 | file://CVE-2021-45949.patch \ | ||
44 | " | 44 | " |
45 | 45 | ||
46 | SRC_URI_class-native = "${SRC_URI_BASE} \ | 46 | SRC_URI_class-native = "${SRC_URI_BASE} \ |