glibc: CVE-2015-8779

A stack overflow vulnerability in the catopen function was found, causing applications which pass long strings to the catopen function to crash or, potentially execute arbitrary code. (From OE-Core rev: af20e323932caba8883c91dac610e1ba2b3d4ab5) (From OE-Core rev: 01e9f306e0af4ea2d9fe611c1592b0f19d83f487) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Armin Kuster <akuster@mvista.com> 2016-02-28 10:53:33 -0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-03-21 15:48:47 +0000
commit: 14a42e27195a100ca5edc551007a6a120b10c398 (patch)
tree: 92dccbf97faab8209fb0255bafdc6a0cb0a8446f /meta/recipes-core/glibc/glibc_2.20.bb
parent: dae5ee4e5e41b9bbfb2d0f22521247efa5cadeb0 (diff)
download: poky-14a42e27195a100ca5edc551007a6a120b10c398.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb
index 5e03570cf3..af568d9f4c 100644
--- a/meta/recipes-core/glibc/glibc_2.20.bb
+++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -49,6 +49,7 @@ CVEPATCHES = "\
        file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \
        file://CVE-2015-7547.patch \
        file://CVE-2015-8777.patch \
+        file://CVE-2015-8779.patch \
 "
 LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \
author	Armin Kuster <akuster@mvista.com>	2016-02-28 10:53:33 -0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-03-21 15:48:47 +0000
commit	14a42e27195a100ca5edc551007a6a120b10c398 (patch)
tree	92dccbf97faab8209fb0255bafdc6a0cb0a8446f /meta/recipes-core/glibc/glibc_2.20.bb
parent	dae5ee4e5e41b9bbfb2d0f22521247efa5cadeb0 (diff)
download	poky-14a42e27195a100ca5edc551007a6a120b10c398.tar.gz

diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb index 5e03570cf3..af568d9f4c 100644 --- a/meta/recipes-core/glibc/glibc_2.20.bb +++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -49,6 +49,7 @@ CVEPATCHES = "\
49	file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \	49	file://CVE-2015-1472-wscanf-allocates-too-little-memory.patch \
50	file://CVE-2015-7547.patch \	50	file://CVE-2015-7547.patch \
51	file://CVE-2015-8777.patch \	51	file://CVE-2015-8777.patch \
		52	file://CVE-2015-8779.patch \
52	"	53	"
53		54
54	LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \	55	LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \