diff options
| author | Armin Kuster <akuster@mvista.com> | 2016-05-03 16:46:05 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-05-17 21:29:30 +0100 |
| commit | f000d117532cdd4053ee3b3d9ee0c00a13da41ec (patch) | |
| tree | cea82e323825d7045d94f29a4aa94cd1f3a4bd22 /meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch | |
| parent | 9930fca92bc6a959d2e151909b2d199b8497bfca (diff) | |
| download | poky-f000d117532cdd4053ee3b3d9ee0c00a13da41ec.tar.gz | |
openssl: Security fix via update to 1.0.2h
CVE-2016-2105
CVE-2016-2106
CVE-2016-2109
CVE-2016-2176
https://www.openssl.org/news/secadv/20160503.txt
fixup openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch
drop crypto_use_bigint_in_x86-64_perl.patch as that fix is in latest.
(From OE-Core rev: c693f34f54257a8eca9fe8c5a9eee5647b7eeb0c)
(From OE-Core rev: 73daaa207754e48efef59b516ad5601129cf4bac)
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch')
| -rw-r--r-- | meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch b/meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch index cebc8cf0d0..f736e5c098 100644 --- a/meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch +++ b/meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch | |||
| @@ -8,16 +8,16 @@ http://www.mail-archive.com/openssl-dev@openssl.org/msg32860.html | |||
| 8 | 8 | ||
| 9 | Signed-off-by: Xufeng Zhang <xufeng.zhang@windriver.com> | 9 | Signed-off-by: Xufeng Zhang <xufeng.zhang@windriver.com> |
| 10 | --- | 10 | --- |
| 11 | Index: openssl-1.0.2/crypto/evp/digest.c | 11 | Index: openssl-1.0.2h/crypto/evp/digest.c |
| 12 | =================================================================== | 12 | =================================================================== |
| 13 | --- openssl-1.0.2.orig/crypto/evp/digest.c | 13 | --- openssl-1.0.2h.orig/crypto/evp/digest.c |
| 14 | +++ openssl-1.0.2/crypto/evp/digest.c | 14 | +++ openssl-1.0.2h/crypto/evp/digest.c |
| 15 | @@ -208,7 +208,7 @@ int EVP_DigestInit_ex(EVP_MD_CTX *ctx, c | 15 | @@ -211,7 +211,7 @@ int EVP_DigestInit_ex(EVP_MD_CTX *ctx, c |
| 16 | return 0; | 16 | type = ctx->digest; |
| 17 | } | 17 | } |
| 18 | #endif | 18 | #endif |
| 19 | - if (ctx->digest != type) { | 19 | - if (ctx->digest != type) { |
| 20 | + if (type && (ctx->digest != type)) { | 20 | + if (type && (ctx->digest != type)) { |
| 21 | if (ctx->digest && ctx->digest->ctx_size) | 21 | if (ctx->digest && ctx->digest->ctx_size) { |
| 22 | OPENSSL_free(ctx->md_data); | 22 | OPENSSL_free(ctx->md_data); |
| 23 | ctx->digest = type; | 23 | ctx->md_data = NULL; |