diff options
| author | Armin Kuster <akuster@mvista.com> | 2015-11-11 14:21:46 -0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-11-25 08:08:08 +0000 |
| commit | 8514d21e6a8fef634d6f361bdfd19ef87a3e5567 (patch) | |
| tree | 20cbd370438bf21329766267072452ac1121c7e1 /meta/recipes-core/libxml/libxml2.inc | |
| parent | e864f71f4cc2e1cedfd36a8b9ab526fdb76fbb7d (diff) | |
| download | poky-8514d21e6a8fef634d6f361bdfd19ef87a3e5567.tar.gz | |
libxml2: fix CVE-2015-7942 and CVE-2015-8035
CVE-2015-7942 libxml2: heap-based buffer overflow in xmlParseConditionalSections()
CVE-2015-8035 libxml2: DoS when parsing specially crafted XML document if XZ support is enabled
[YOCTO #8641]
(From OE-Core rev: 27de51f4ad21d9b896e7d48041e7cdf20c564a38)
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/libxml/libxml2.inc')
| -rw-r--r-- | meta/recipes-core/libxml/libxml2.inc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-core/libxml/libxml2.inc b/meta/recipes-core/libxml/libxml2.inc index 1c3c37d509..6ada401385 100644 --- a/meta/recipes-core/libxml/libxml2.inc +++ b/meta/recipes-core/libxml/libxml2.inc | |||
| @@ -21,6 +21,8 @@ SRC_URI = "ftp://xmlsoft.org/libxml2/libxml2-${PV}.tar.gz;name=libtar \ | |||
| 21 | file://libxml-m4-use-pkgconfig.patch \ | 21 | file://libxml-m4-use-pkgconfig.patch \ |
| 22 | file://configure.ac-fix-cross-compiling-warning.patch \ | 22 | file://configure.ac-fix-cross-compiling-warning.patch \ |
| 23 | file://0001-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch \ | 23 | file://0001-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch \ |
| 24 | file://CVE-2015-7942.patch \ | ||
| 25 | file://CVE-2015-8035.patch \ | ||
| 24 | " | 26 | " |
| 25 | 27 | ||
| 26 | BINCONFIG = "${bindir}/xml2-config" | 28 | BINCONFIG = "${bindir}/xml2-config" |