diff options
author | Khem Raj <raj.khem@gmail.com> | 2020-02-20 09:13:40 -0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2020-02-22 23:57:27 +0000 |
commit | fd0e3e1708393cf4b59802843c2c6c917798145c (patch) | |
tree | 6cdcbf2d50b78b0e1cc24571bc4eea4a5735e833 /meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch | |
parent | 746f277acc908c75a1578c018b5dd03fb88bcb1a (diff) | |
download | poky-fd0e3e1708393cf4b59802843c2c6c917798145c.tar.gz |
binutils: Upgrade to 2.34 release
Details of changelog [1]
Removing bfd/ld patch to enable PE targets, instead use
specific emulations via --enable-targets for x86_64
Re-arrange/forward-port patches and upgrade libctf configure to libtool 2.4 patch
rpaths are no longer emitted into elfedit/readelf therefore no need of
chrpath anymore
Instead of pre-generating configure scripts and house them in libtool
patch, generate them during configure. This also ensures that we do not
patch configure directly but rather the sources which generate it
Package newly added libctf library
[1] https://lists.gnu.org/archive/html/info-gnu/2020-02/msg00000.html
(From OE-Core rev: 82f7d5cfc2ab02f39b69c0f8697d660936422d4a)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Christopher Clark <christopher.clark6@baesystems.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch')
-rw-r--r-- | meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch | 46 |
1 files changed, 0 insertions, 46 deletions
diff --git a/meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch b/meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch deleted file mode 100644 index 1fe05d310e..0000000000 --- a/meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch +++ /dev/null | |||
@@ -1,46 +0,0 @@ | |||
1 | From 0192438051a7e781585647d5581a2a6f62fda362 Mon Sep 17 00:00:00 2001 | ||
2 | From: Alan Modra <amodra@gmail.com> | ||
3 | Date: Wed, 9 Oct 2019 10:47:13 +1030 | ||
4 | Subject: [PATCH] PR25070, SEGV in function _bfd_dwarf2_find_nearest_line | ||
5 | |||
6 | Selectively backporting fix for bfd/dwarf2.c, but not the ChangeLog | ||
7 | file. There are newer versions of binutils, but none of them contain the | ||
8 | commit fixing CVE-2019-17451, so backport it to master and zeus. | ||
9 | |||
10 | Upstream-Status: Backport | ||
11 | [https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=336bfbeb1848] | ||
12 | CVE: CVE-2019-17451 | ||
13 | Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> | ||
14 | |||
15 | |||
16 | Evil testcase with two debug info sections, with sizes of 2aaaabac4ec1 | ||
17 | and ffffd5555453b140 result in a total size of 1. Reading the first | ||
18 | section of course overflows the buffer and tramples on other memory. | ||
19 | |||
20 | PR 25070 | ||
21 | * dwarf2.c (_bfd_dwarf2_slurp_debug_info): Catch overflow of | ||
22 | total_size calculation. | ||
23 | --- | ||
24 | bfd/dwarf2.c | 11 ++++++++++- | ||
25 | 1 file changed, 10 insertions(+), 1 deletion(-) | ||
26 | |||
27 | --- a/bfd/dwarf2.c | ||
28 | +++ b/bfd/dwarf2.c | ||
29 | @@ -4439,7 +4439,16 @@ _bfd_dwarf2_slurp_debug_info (bfd *abfd, | ||
30 | for (total_size = 0; | ||
31 | msec; | ||
32 | msec = find_debug_info (debug_bfd, debug_sections, msec)) | ||
33 | - total_size += msec->size; | ||
34 | + { | ||
35 | + /* Catch PR25070 testcase overflowing size calculation here. */ | ||
36 | + if (total_size + msec->size < total_size | ||
37 | + || total_size + msec->size < msec->size) | ||
38 | + { | ||
39 | + bfd_set_error (bfd_error_no_memory); | ||
40 | + return FALSE; | ||
41 | + } | ||
42 | + total_size += msec->size; | ||
43 | + } | ||
44 | |||
45 | stash->info_ptr_memory = (bfd_byte *) bfd_malloc (total_size); | ||
46 | if (stash->info_ptr_memory == NULL) | ||