glibc: CVE-2015-8776

It was found that out-of-range time values passed to the strftime function may cause it to crash, leading to a denial of service, or potentially disclosure information. (From OE-Core rev: b9bc001ee834e4f8f756a2eaf2671aac3324b0ee) References: Upstream bug: https://sourceware.org/bugzilla/show_bug.cgi?id=18985 CVE assignment: http://seclists.org/oss-sec/2016/q1/153 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-8776 Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Tudor Florea <tudor.florea@enea.com>
author: Sona Sarmadi <sona.sarmadi@enea.com> 2016-02-03 11:59:15 +0100
committer: Tudor Florea <tudor.florea@enea.com> 2016-02-03 22:21:50 +0100
commit: a3b82f660c689b3310f1c1d9197cfd7494cc8e5e (patch)
tree: 5e88567a78193915f5350803b971950f54edfe05 /meta/recipes-core/glibc/glibc_2.20.bb
parent: a0b44f4563515377fa4944d220f7e0f948729872 (diff)
download: poky-a3b82f660c689b3310f1c1d9197cfd7494cc8e5e.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb
index 6544b522df..4b0e927bfa 100644
--- a/meta/recipes-core/glibc/glibc_2.20.bb
+++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -51,6 +51,7 @@ CVEPATCHES = "\
        file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \
        file://CVE-2014-9761_1.patch \
        file://CVE-2014-9761_2.patch \
+        file://CVE-2015-8776.patch \
    "
 LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \
      file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
author	Sona Sarmadi <sona.sarmadi@enea.com>	2016-02-03 11:59:15 +0100
committer	Tudor Florea <tudor.florea@enea.com>	2016-02-03 22:21:50 +0100
commit	a3b82f660c689b3310f1c1d9197cfd7494cc8e5e (patch)
tree	5e88567a78193915f5350803b971950f54edfe05 /meta/recipes-core/glibc/glibc_2.20.bb
parent	a0b44f4563515377fa4944d220f7e0f948729872 (diff)
download	poky-a3b82f660c689b3310f1c1d9197cfd7494cc8e5e.tar.gz

diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb index 6544b522df..4b0e927bfa 100644 --- a/meta/recipes-core/glibc/glibc_2.20.bb +++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -51,6 +51,7 @@ CVEPATCHES = "\
51	file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \	51	file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \
52	file://CVE-2014-9761_1.patch \	52	file://CVE-2014-9761_1.patch \
53	file://CVE-2014-9761_2.patch \	53	file://CVE-2014-9761_2.patch \
		54	file://CVE-2015-8776.patch \
54	"	55	"
55	LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \	56	LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \
56	file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \	57	file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \