diff options
| author | Sinan Kaya <okaya@kernel.org> | 2018-10-05 03:55:15 +0000 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-10-18 11:08:53 +0100 |
| commit | fbc735796f473d85055feb9c3927cd5293061bf6 (patch) | |
| tree | 14e95a758a49ca93b19aeea965e4e4e4383fdbd8 /meta/recipes-devtools/git/git.inc | |
| parent | 97ee1f80870745bf6c542ee2f184c9e468672714 (diff) | |
| download | poky-fbc735796f473d85055feb9c3927cd5293061bf6.tar.gz | |
git: CVE-2018-11233
* CVE-2018-11233
Code to sanity-check pathnames on NTFS can result in reading
out-of-bounds memory.
Affects < 2.17.1
CVE: CVE-2018-11233
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1583888
(From OE-Core rev: d145f605c274386baf0dde023f15cddf37523f3b)
Signed-off-by: Sinan Kaya <okaya@kernel.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/git/git.inc')
| -rw-r--r-- | meta/recipes-devtools/git/git.inc | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/recipes-devtools/git/git.inc b/meta/recipes-devtools/git/git.inc index bea23ec783..8603c045cc 100644 --- a/meta/recipes-devtools/git/git.inc +++ b/meta/recipes-devtools/git/git.inc | |||
| @@ -8,7 +8,8 @@ PROVIDES_append_class-native = " git-replacement-native" | |||
| 8 | 8 | ||
| 9 | SRC_URI = "${KERNELORG_MIRROR}/software/scm/git/git-${PV}.tar.gz;name=tarball \ | 9 | SRC_URI = "${KERNELORG_MIRROR}/software/scm/git/git-${PV}.tar.gz;name=tarball \ |
| 10 | ${KERNELORG_MIRROR}/software/scm/git/git-manpages-${PV}.tar.gz;name=manpages \ | 10 | ${KERNELORG_MIRROR}/software/scm/git/git-manpages-${PV}.tar.gz;name=manpages \ |
| 11 | file://CVE-2018-11235.patch" | 11 | file://CVE-2018-11235.patch \ |
| 12 | file://CVE-2018-11233.patch" | ||
| 12 | 13 | ||
| 13 | S = "${WORKDIR}/git-${PV}" | 14 | S = "${WORKDIR}/git-${PV}" |
| 14 | 15 | ||