diff options
| author | Sona Sarmadi <sona.sarmadi@enea.com> | 2017-01-27 12:59:35 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-02-08 12:00:21 +0000 |
| commit | 4f991d93f6221e72c3eea6080ec405155b680681 (patch) | |
| tree | 5a9f83d59a6af669ab2e120f963d72adba699dbd /meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb | |
| parent | b45822fe666784c6588317e2cd1e0c411e564197 (diff) | |
| download | poky-4f991d93f6221e72c3eea6080ec405155b680681.tar.gz | |
libXrandr: fix for CVE-2016-7947 and CVE-2016-7948
CVE-2016-7947
Insufficient validation of server responses result in Integer overflows
CVE-2016-7948
Insufficient validation of server responses result in various data mishandlings
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7947
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7948
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
Upstream patch for both CVEs:
https://cgit.freedesktop.org/xorg/lib/libXrandr/commit/?id=a0df3e1c7728205e5c7650b2e6dce684139254a6
(From OE-Core rev: 1c293e889f6eeae36f8f6ddd9676c65d613ad0fc)
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb')
| -rw-r--r-- | meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb b/meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb index abbbae5528..35c60b4190 100644 --- a/meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb +++ b/meta/recipes-graphics/xorg-lib/libxrandr_1.5.0.bb | |||
| @@ -19,5 +19,8 @@ XORG_PN = "libXrandr" | |||
| 19 | 19 | ||
| 20 | BBCLASSEXTEND = "native nativesdk" | 20 | BBCLASSEXTEND = "native nativesdk" |
| 21 | 21 | ||
| 22 | SRC_URI += "file://CVE-2016-7947_CVE-2016-7948.patch \ | ||
| 23 | " | ||
| 24 | |||
| 22 | SRC_URI[md5sum] = "309762867e41c6fd813da880d8a1bc93" | 25 | SRC_URI[md5sum] = "309762867e41c6fd813da880d8a1bc93" |
| 23 | SRC_URI[sha256sum] = "6f864959b7fc35db11754b270d71106ef5b5cf363426aa58589cb8ac8266de58" | 26 | SRC_URI[sha256sum] = "6f864959b7fc35db11754b270d71106ef5b5cf363426aa58589cb8ac8266de58" |