diff options
author | Li Wang <li.wang@windriver.com> | 2012-12-13 15:24:07 +0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2012-12-17 17:24:56 +0000 |
commit | c511d0eb40d5567a828cb21666b2e05ed7ef1168 (patch) | |
tree | f282ca110a3aad4f96d920666eafc40b4a8bd325 /meta/recipes-extended/cups/cups_1.4.6.bb | |
parent | cdb398935ec1c4e15e2be6b0fe98f696c9e280fc (diff) | |
download | poky-c511d0eb40d5567a828cb21666b2e05ed7ef1168.tar.gz |
cups CVE-2011-3170
the patch come from:
http://cups.org/strfiles/3914/str3914.patch
The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and
earlier does not properly handle the first code word in an LZW stream,
which allows remote attackers to trigger a heap-based buffer overflow,
and possibly execute arbitrary code, via a crafted stream, a different
vulnerability than CVE-2011-2896.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3170
[YOCTO #3583]
[ CQID: WIND00299594 ]
Upstream-Status: Backport
(From OE-Core rev: c82517bb667484854eaa05b6e9efd9ee0f164fec)
Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended/cups/cups_1.4.6.bb')
-rw-r--r-- | meta/recipes-extended/cups/cups_1.4.6.bb | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/recipes-extended/cups/cups_1.4.6.bb b/meta/recipes-extended/cups/cups_1.4.6.bb index 7cecd7fc82..75c23d39e6 100644 --- a/meta/recipes-extended/cups/cups_1.4.6.bb +++ b/meta/recipes-extended/cups/cups_1.4.6.bb | |||
@@ -1,6 +1,6 @@ | |||
1 | require cups14.inc | 1 | require cups14.inc |
2 | 2 | ||
3 | PR = "r8" | 3 | PR = "r9" |
4 | DEPENDS += "libusb \ | 4 | DEPENDS += "libusb \ |
5 | ${@base_contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}" | 5 | ${@base_contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}" |
6 | 6 | ||
@@ -10,6 +10,7 @@ SRC_URI += " \ | |||
10 | file://0001-don-t-try-to-run-generated-binaries.patch \ | 10 | file://0001-don-t-try-to-run-generated-binaries.patch \ |
11 | file://cups_serverbin.patch \ | 11 | file://cups_serverbin.patch \ |
12 | file://cups-CVE-2011-2896.patch \ | 12 | file://cups-CVE-2011-2896.patch \ |
13 | file://cups-CVE-2011-3170.patch \ | ||
13 | file://cups-CVE-2012-5519.patch \ | 14 | file://cups-CVE-2012-5519.patch \ |
14 | " | 15 | " |
15 | 16 | ||