diff options
author | Thiruvadi Rajaraman <trajaraman@mvista.com> | 2017-09-21 19:24:44 +0530 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-01-07 17:10:08 +0000 |
commit | 3daf8af9487915421311042a9339de8e19b2d472 (patch) | |
tree | 9f9ab3bf4b476827bf199be4e43d9195efe33bbe /meta/recipes-devtools/binutils/binutils-2.27.inc | |
parent | d2b21b2a14a6f18f5185cb77fab7903762b52af8 (diff) | |
download | poky-3daf8af9487915421311042a9339de8e19b2d472.tar.gz |
binutils: CVE-2017-9752
Source: binutils-gdb.git
MR: 73971
Type: Security Fix
Disposition: Backport from binutils-2_29
ChangeID: fe0e1d0f234ed157135818c24f4270c34e093828
Description:
Fix potential address violations when processing a corrupt Alpha VMA binary.
PR binutils/21589
* vms-alpha.c (_bfd_vms_get_value): Add an extra parameter - the
maximum value for the ascic pointer. Check that name processing
does not read beyond this value.
(_bfd_vms_slurp_etir): Add checks for attempts to read beyond the
end of etir record.
Affects: <= 2.28
Author: Nick Clifton <nickc@redhat.com>
(From OE-Core rev: ea89dfe868085b463dfc24df78b49d1703989484)
Signed-off-by: Thiruvadi Rajaraman <trajaraman@mvista.com>
Reviewed-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/binutils/binutils-2.27.inc')
-rw-r--r-- | meta/recipes-devtools/binutils/binutils-2.27.inc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/binutils/binutils-2.27.inc b/meta/recipes-devtools/binutils/binutils-2.27.inc index 6580270284..54fb5d61c3 100644 --- a/meta/recipes-devtools/binutils/binutils-2.27.inc +++ b/meta/recipes-devtools/binutils/binutils-2.27.inc | |||
@@ -84,6 +84,7 @@ SRC_URI = "\ | |||
84 | file://CVE-2017-9748.patch \ | 84 | file://CVE-2017-9748.patch \ |
85 | file://CVE-2017-9747.patch \ | 85 | file://CVE-2017-9747.patch \ |
86 | file://CVE-2017-9750.patch \ | 86 | file://CVE-2017-9750.patch \ |
87 | file://CVE-2017-9752.patch \ | ||
87 | " | 88 | " |
88 | S = "${WORKDIR}/git" | 89 | S = "${WORKDIR}/git" |
89 | 90 | ||