diff options
author | Yongxin Liu <yongxin.liu@windriver.com> | 2020-11-04 08:43:33 +0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2020-11-12 13:07:52 +0000 |
commit | da5ad8a4232beb4de7c0940ef193578e99d36e0f (patch) | |
tree | ab44d798a6623873f592b052258bb4a39c044e3e /meta/recipes-bsp/grub/grub2.inc | |
parent | 5b716fa8e2562a1f942c2d920a3f727c3841c4f3 (diff) | |
download | poky-da5ad8a4232beb4de7c0940ef193578e99d36e0f.tar.gz |
grub: clean up CVE patches
Clean up several patches introduced in commit 6732918498 ("grub:fix
several CVEs in grub 2.04").
1) Add CVE tags to individual patches.
2) Rename upstream patches and prefix them with CVE tags.
3) Add description of reference to upstream patch.
(From OE-Core rev: 4f395ad49ef9035954d0fda7b7df14dea18b49a0)
Signed-off-by: Yongxin Liu <yongxin.liu@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bcb8b6719beaf6625e6b703e91958fe8afba5819)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-bsp/grub/grub2.inc')
-rw-r--r-- | meta/recipes-bsp/grub/grub2.inc | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/meta/recipes-bsp/grub/grub2.inc b/meta/recipes-bsp/grub/grub2.inc index ef3e64671f..4ec7d0b0fc 100644 --- a/meta/recipes-bsp/grub/grub2.inc +++ b/meta/recipes-bsp/grub/grub2.inc | |||
@@ -19,14 +19,14 @@ SRC_URI = "${GNU_MIRROR}/grub/grub-${PV}.tar.gz \ | |||
19 | file://grub-module-explicitly-keeps-symbole-.module_license.patch \ | 19 | file://grub-module-explicitly-keeps-symbole-.module_license.patch \ |
20 | file://0001-grub.d-10_linux.in-add-oe-s-kernel-name.patch \ | 20 | file://0001-grub.d-10_linux.in-add-oe-s-kernel-name.patch \ |
21 | file://CVE-2020-10713.patch \ | 21 | file://CVE-2020-10713.patch \ |
22 | file://0001-calloc-Make-sure-we-always-have-an-overflow-checking.patch \ | 22 | file://calloc-Make-sure-we-always-have-an-overflow-checking.patch \ |
23 | file://0002-lvm-Add-LVM-cache-logical-volume-handling.patch \ | 23 | file://lvm-Add-LVM-cache-logical-volume-handling.patch \ |
24 | file://0003-calloc-Use-calloc-at-most-places.patch \ | 24 | file://CVE-2020-14308-calloc-Use-calloc-at-most-places.patch \ |
25 | file://0004-safemath-Add-some-arithmetic-primitives-that-check-f.patch \ | 25 | file://safemath-Add-some-arithmetic-primitives-that-check-f.patch \ |
26 | file://0005-malloc-Use-overflow-checking-primitives-where-we-do-.patch \ | 26 | file://CVE-2020-14309-CVE-2020-14310-CVE-2020-14311-malloc-Use-overflow-checking-primitives-where-we-do-.patch \ |
27 | file://0006-script-Remove-unused-fields-from-grub_script_functio.patch \ | 27 | file://script-Remove-unused-fields-from-grub_script_functio.patch \ |
28 | file://0007-script-Avoid-a-use-after-free-when-redefining-a-func.patch \ | 28 | file://CVE-2020-15706-script-Avoid-a-use-after-free-when-redefining-a-func.patch \ |
29 | file://0008-linux-Fix-integer-overflows-in-initrd-size-handling.patch \ | 29 | file://CVE-2020-15707-linux-Fix-integer-overflows-in-initrd-size-handling.patch \ |
30 | " | 30 | " |
31 | SRC_URI[md5sum] = "5ce674ca6b2612d8939b9e6abed32934" | 31 | SRC_URI[md5sum] = "5ce674ca6b2612d8939b9e6abed32934" |
32 | SRC_URI[sha256sum] = "f10c85ae3e204dbaec39ae22fa3c5e99f0665417e91c2cb49b7e5031658ba6ea" | 32 | SRC_URI[sha256sum] = "f10c85ae3e204dbaec39ae22fa3c5e99f0665417e91c2cb49b7e5031658ba6ea" |