diff options
| author | Zhixiong Chi <Zhixiong.Chi@windriver.com> | 2015-12-24 17:29:59 +0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-01-07 13:40:16 +0000 |
| commit | 30c06a412e3a85eb2770f6aeb6f9b3ce632ca19d (patch) | |
| tree | 7f3964a47be8eb5e5edcc503b6a7d50e933717a7 /meta/recipes-core/expat/expat.inc | |
| parent | 315bdc80b0b97836715efae2c158f74783159bf3 (diff) | |
| download | poky-30c06a412e3a85eb2770f6aeb6f9b3ce632ca19d.tar.gz | |
expat: CVE-2015-1283
Add CVE-2015-1283 patch for fixing integer overflow bug in expat.
Details are at below link:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283
Patch comes from:
https://hg.mozilla.org/releases/mozilla-esr31/rev/2f3e78643f5c
https://codereview.chromium.org/1224303003
(From OE-Core rev: c89c5383e304a52b604a3672ac93fd88b5eb8b41)
Signed-off-by: Zhixiong Chi <Zhixiong.Chi@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/expat/expat.inc')
| -rw-r--r-- | meta/recipes-core/expat/expat.inc | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-core/expat/expat.inc b/meta/recipes-core/expat/expat.inc index 6dfafe94d2..4bd60a2a6d 100644 --- a/meta/recipes-core/expat/expat.inc +++ b/meta/recipes-core/expat/expat.inc | |||
| @@ -5,7 +5,9 @@ SECTION = "libs" | |||
| 5 | LICENSE = "MIT" | 5 | LICENSE = "MIT" |
| 6 | 6 | ||
| 7 | SRC_URI = "${SOURCEFORGE_MIRROR}/expat/expat-${PV}.tar.gz \ | 7 | SRC_URI = "${SOURCEFORGE_MIRROR}/expat/expat-${PV}.tar.gz \ |
| 8 | file://autotools.patch" | 8 | file://autotools.patch \ |
| 9 | file://expat-CVE-2015-1283.patch \ | ||
| 10 | " | ||
| 9 | 11 | ||
| 10 | inherit autotools lib_package gzipnative | 12 | inherit autotools lib_package gzipnative |
| 11 | 13 | ||