diff options
author | Joshua Lock <josh@linux.intel.com> | 2011-10-13 11:54:24 -0700 |
---|---|---|
committer | Joshua Lock <josh@linux.intel.com> | 2011-10-14 09:38:40 -0700 |
commit | e3e50d2c69a5e78c32ca9717e313c6c79f7efd97 (patch) | |
tree | 06949101028fe10c745399b7413a88276bb6e3f7 /meta/recipes-multimedia/libpng/libpng_1.2.44.bb | |
parent | e5cce8a57d40a16a5133c1a394ab0f3717741344 (diff) | |
download | poky-e3e50d2c69a5e78c32ca9717e313c6c79f7efd97.tar.gz |
libpng: backport security fixes
This patch includes various security fixes from upstream (though the patches
were taken from Debian's packaging) to address the following CVE issues:
libpng CVE-2011-2690
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2690
libpng CVE-2011-2692
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2692
libpng CVE-2011-2501
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2501
Signed-off-by: Joshua Lock <josh@linux.intel.com>
Diffstat (limited to 'meta/recipes-multimedia/libpng/libpng_1.2.44.bb')
-rw-r--r-- | meta/recipes-multimedia/libpng/libpng_1.2.44.bb | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/meta/recipes-multimedia/libpng/libpng_1.2.44.bb b/meta/recipes-multimedia/libpng/libpng_1.2.44.bb index 4a8d5c30ed..58c20f0314 100644 --- a/meta/recipes-multimedia/libpng/libpng_1.2.44.bb +++ b/meta/recipes-multimedia/libpng/libpng_1.2.44.bb | |||
@@ -6,9 +6,12 @@ LICENSE = "libpng" | |||
6 | LIC_FILES_CHKSUM = "file://LICENSE;md5=a294a2bb08b7f25558119edbfd6b2e92 \ | 6 | LIC_FILES_CHKSUM = "file://LICENSE;md5=a294a2bb08b7f25558119edbfd6b2e92 \ |
7 | file://png.h;startline=172;endline=261;md5=3253923f0093658f470e52a06ddcf4e7" | 7 | file://png.h;startline=172;endline=261;md5=3253923f0093658f470e52a06ddcf4e7" |
8 | DEPENDS = "zlib" | 8 | DEPENDS = "zlib" |
9 | PR = "r0" | 9 | PR = "r1" |
10 | 10 | ||
11 | SRC_URI = "${SOURCEFORGE_MIRROR}/libpng/libpng-${PV}.tar.bz2" | 11 | SRC_URI = "${SOURCEFORGE_MIRROR}/libpng/libpng-${PV}.tar.bz2 \ |
12 | file://02-CVE-2011-2501.patch \ | ||
13 | file://03-CVE-2011-2690.patch \ | ||
14 | file://04-CVE-2011-2692.patch" | ||
12 | 15 | ||
13 | SRC_URI[md5sum] = "e3ac7879d62ad166a6f0c7441390d12b" | 16 | SRC_URI[md5sum] = "e3ac7879d62ad166a6f0c7441390d12b" |
14 | SRC_URI[sha256sum] = "b9ab20f1c2c3bf6c4448fd9bd8a4a8905b918114d5fada56c97bb758a17b7215" | 17 | SRC_URI[sha256sum] = "b9ab20f1c2c3bf6c4448fd9bd8a4a8905b918114d5fada56c97bb758a17b7215" |