diff options
author | Fan Xin <fan.xin@jp.fujitsu.com> | 2017-06-07 17:29:03 +0900 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-03-15 15:47:53 -0700 |
commit | 3a1b3aada39a54f261c8fcfd69325fd118a9ecfe (patch) | |
tree | 5c936468b4bed907e8db1cab54724309ad9707b2 /meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb | |
parent | 4812f7574885b24f9acbc8efcf8843cfdb8f8a11 (diff) | |
download | poky-3a1b3aada39a54f261c8fcfd69325fd118a9ecfe.tar.gz |
libtirpc: Fix CVE-2017-8779
This vulnerability is also called "rpcbomb".
Backport upstream patch to fix this vulnerability.
CVE: CVE-2017-8779
(From OE-Core rev: bb6af5f0dbb39553654ba3a587c8078bb635da6f)
Signed-off-by: Fan Xin<fan.xin@jp.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb')
-rw-r--r-- | meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb b/meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb index 5518fb3c78..f41d2f3e3d 100644 --- a/meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb +++ b/meta/recipes-extended/libtirpc/libtirpc_1.0.1.bb | |||
@@ -16,6 +16,7 @@ SRC_URI = "${SOURCEFORGE_MIRROR}/${BPN}/${BP}.tar.bz2;name=libtirpc \ | |||
16 | file://export_key_secretkey_is_set.patch \ | 16 | file://export_key_secretkey_is_set.patch \ |
17 | file://0001-replace-__bzero-with-memset-API.patch \ | 17 | file://0001-replace-__bzero-with-memset-API.patch \ |
18 | file://0001-include-stdint.h-for-uintptr_t.patch \ | 18 | file://0001-include-stdint.h-for-uintptr_t.patch \ |
19 | file://0001-Fix-for-CVE-2017-8779.patch \ | ||
19 | " | 20 | " |
20 | 21 | ||
21 | SRC_URI_append_libc-uclibc = " file://remove-des-functionality.patch \ | 22 | SRC_URI_append_libc-uclibc = " file://remove-des-functionality.patch \ |