diff options
author | Tudor Florea <tudor.florea@enea.com> | 2015-07-07 00:29:37 +0200 |
---|---|---|
committer | Tudor Florea <tudor.florea@enea.com> | 2015-07-07 00:29:37 +0200 |
commit | c190b396d5d2b0ce2caabf7366f3b08546187f11 (patch) | |
tree | 5a0748d0fe6581dd4c8eaf9dbdefe498bf9a0e64 /meta/recipes-devtools/qemu/qemu_1.7.2.bb | |
parent | e8be346c3a210a1b4da8b6943c5fe2e5556d29b9 (diff) | |
download | poky-c190b396d5d2b0ce2caabf7366f3b08546187f11.tar.gz |
qemu: fixed multiple CVEs
CVE-2015-3456, fdc: out-of-bounds fifo buffer memory access
CVE-2014-5263, missing field list terminator in vmstate_xhci_event
CVE-2014-3689, vmware_vga: insufficient parameter validation in rectangle
functions
CVE-2014-7815, vnc: insufficient bits_per_pixel from the client sanitization
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5263
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3689
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7815
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
Diffstat (limited to 'meta/recipes-devtools/qemu/qemu_1.7.2.bb')
-rw-r--r-- | meta/recipes-devtools/qemu/qemu_1.7.2.bb | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/meta/recipes-devtools/qemu/qemu_1.7.2.bb b/meta/recipes-devtools/qemu/qemu_1.7.2.bb index 60a7937219..c3c6d3652d 100644 --- a/meta/recipes-devtools/qemu/qemu_1.7.2.bb +++ b/meta/recipes-devtools/qemu/qemu_1.7.2.bb | |||
@@ -7,7 +7,11 @@ SRC_URI += "file://fxrstorssefix.patch \ | |||
7 | file://qemu-enlarge-env-entry-size.patch \ | 7 | file://qemu-enlarge-env-entry-size.patch \ |
8 | file://Qemu-Arm-versatilepb-Add-memory-size-checking.patch \ | 8 | file://Qemu-Arm-versatilepb-Add-memory-size-checking.patch \ |
9 | file://ide-CVE-2014-2894.patch \ | 9 | file://ide-CVE-2014-2894.patch \ |
10 | file://slirp-udp-NULL-pointer-dereference-CVE-2014-3640.patch" | 10 | file://slirp-udp-NULL-pointer-dereference-CVE-2014-3640.patch \ |
11 | file://vmware-vga-CVE-2014-3689.patch \ | ||
12 | file://vmstate_xhci_event-CVE-2014-5263.patch \ | ||
13 | file://vnc-CVE-2014-7815.patch \ | ||
14 | file://fdc-CVE-2015-3456.patch" | ||
11 | 15 | ||
12 | SRC_URI_prepend = "http://wiki.qemu.org/download/qemu-${PV}.tar.bz2" | 16 | SRC_URI_prepend = "http://wiki.qemu.org/download/qemu-${PV}.tar.bz2" |
13 | SRC_URI[md5sum] = "a52e0acd37b0c9b06228fe98da0b1b43" | 17 | SRC_URI[md5sum] = "a52e0acd37b0c9b06228fe98da0b1b43" |