grub: fix several CVEs in grub 2.04 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yongxin Liu <yongxin.liu@windriver.com>	2020-10-28 11:18:06 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2020-10-30 13:04:39 +0000
commit	141bf3fdb65d3c17426843ec3ea040244d59379f (patch)
tree	f4731ece58d7303f5ccc12b83a5ec0cf28f43b72 /README.qemu
parent	a65148ba0a1403fbb3b9271909c48c53a3ee9b6d (diff)
download	poky-141bf3fdb65d3c17426843ec3ea040244d59379f.tar.gz

grub: fix several CVEs in grub 2.04

Backport patches from https://git.savannah.gnu.org/git/grub.git to fix some CVEs. Here is the list. CVE-2020-14308: 0001-calloc-Make-sure-we-always-have-an-overflow-checking.patch 0002-lvm-Add-LVM-cache-logical-volume-handling.patch 0003-calloc-Use-calloc-at-most-places.patch CVE-2020-14309, CVE-2020-14310, CVE-2020-14311: 0004-safemath-Add-some-arithmetic-primitives-that-check-f.patch 0005-malloc-Use-overflow-checking-primitives-where-we-do-.patch CVE-2020-15706: 0006-script-Remove-unused-fields-from-grub_script_functio.patch 0007-script-Avoid-a-use-after-free-when-redefining-a-func.patch CVE-2020-15707: 0008-linux-Fix-integer-overflows-in-initrd-size-handling.patch (From OE-Core rev: 67329184985a03534f11f95e9df5f9fb2305a261) Signed-off-by: Yongxin Liu <yongxin.liu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'README.qemu')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: