diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2015-12-14 13:24:12 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-01-30 12:03:14 +0000 |
commit | d4db68ae6bae2d9c6d7ed17a0dbce17477b84c9d (patch) | |
tree | c59bb74281627581b8298716ae24f1c39567fe58 /meta/recipes-core/libxml/libxml2.inc | |
parent | 3beebd944711bb7f015385823a2cfbe2095d2f1d (diff) | |
download | poky-d4db68ae6bae2d9c6d7ed17a0dbce17477b84c9d.tar.gz |
libxml2: CVE-2015-8035
Fixes DoS when parsing specially crafted XML document
if XZ support is enabled.
References:
https://bugzilla.gnome.org/show_bug.cgi?id=757466
Upstream correction:
https://git.gnome.org/browse/libxml2/commit/?id=
f0709e3ca8f8947f2d91ed34e92e38a4c23eae63
(From OE-Core rev: e40cae30575a227bb0274869f720dffd816d629a)
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/libxml/libxml2.inc')
-rw-r--r-- | meta/recipes-core/libxml/libxml2.inc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/libxml/libxml2.inc b/meta/recipes-core/libxml/libxml2.inc index 15a2421c38..d5e263bdf8 100644 --- a/meta/recipes-core/libxml/libxml2.inc +++ b/meta/recipes-core/libxml/libxml2.inc | |||
@@ -24,6 +24,7 @@ SRC_URI = "ftp://xmlsoft.org/libxml2/libxml2-${PV}.tar.gz;name=libtar \ | |||
24 | file://libxml2-CVE-2014-3660.patch \ | 24 | file://libxml2-CVE-2014-3660.patch \ |
25 | file://0001-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch \ | 25 | file://0001-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch \ |
26 | file://CVE-2015-7942.patch \ | 26 | file://CVE-2015-7942.patch \ |
27 | file://CVE-2015-8035.patch \ | ||
27 | " | 28 | " |
28 | 29 | ||
29 | BINCONFIG = "${bindir}/xml2-config" | 30 | BINCONFIG = "${bindir}/xml2-config" |