diff options
author | Stefan Ghinea <stefan.ghinea@windriver.com> | 2020-03-12 11:23:22 +0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2020-03-19 09:57:51 +0000 |
commit | d08c1b7e9c5044e330aa9aa552e34ce7f8d48af2 (patch) | |
tree | 940b0d9f1c3ec4799363028a3db5539de9821d33 /meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch | |
parent | 61210237a7d304a0e2eeef9f9f224a9cf337cdb9 (diff) | |
download | poky-d08c1b7e9c5044e330aa9aa552e34ce7f8d48af2.tar.gz |
aspell: CVE-2019-20433
libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string
ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4
outside of the application, as demonstrated by the ASPELL_CONF environment
variable.
References:
https://nvd.nist.gov/vuln/detail/CVE-2019-20433
Upstream patches:
https://github.com/GNUAspell/aspell/commit/de29341638833ba7717bd6b5e6850998454b044b
https://github.com/GNUAspell/aspell/commit/cefd447e5528b08bb0cd6656bc52b4255692cefc
(From OE-Core rev: 07dc85604baf696cccf784c909dbad67275ad7b3)
Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch')
-rw-r--r-- | meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch | 68 |
1 files changed, 68 insertions, 0 deletions
diff --git a/meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch b/meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch new file mode 100644 index 0000000000..9569ddeebe --- /dev/null +++ b/meta/recipes-support/aspell/aspell/CVE-2019-20433-0002.patch | |||
@@ -0,0 +1,68 @@ | |||
1 | From cefd447e5528b08bb0cd6656bc52b4255692cefc Mon Sep 17 00:00:00 2001 | ||
2 | From: Kevin Atkinson <kevina@gnu.org> | ||
3 | Date: Sat, 17 Aug 2019 20:25:21 -0400 | ||
4 | Subject: [PATCH 2/2] Increment library version to reflect API changes. | ||
5 | |||
6 | CVE: CVE-2019-20433 | ||
7 | Upstream-Status: Backport [https://github.com/GNUAspell/aspell/commit/cefd447e5528b08bb0cd6656bc52b4255692cefc] | ||
8 | |||
9 | Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com> | ||
10 | --- | ||
11 | Makefile.am | 31 +++++++++++++++++-------------- | ||
12 | 1 file changed, 17 insertions(+), 14 deletions(-) | ||
13 | |||
14 | diff --git a/Makefile.am b/Makefile.am | ||
15 | index 7e15851..19dc044 100644 | ||
16 | --- a/Makefile.am | ||
17 | +++ b/Makefile.am | ||
18 | @@ -94,18 +94,25 @@ libaspell_la_SOURCES =\ | ||
19 | |||
20 | libaspell_la_LIBADD = $(LTLIBINTL) $(PTHREAD_LIB) | ||
21 | |||
22 | -## Libtool to so name | ||
23 | -## C:R:A => (C-A).(A).(R) | ||
24 | -## 16:5:0 => 16.0.5 | ||
25 | -## 16:5:1 => 15.1.5 | ||
26 | -## 18:0:2 => 16.2.0 | ||
27 | -## 17:0:2 => 15.2.0 | ||
28 | - | ||
29 | +## The version string is current[:revision[:age]] | ||
30 | +## | ||
31 | +## Before a release that has changed the source code at all | ||
32 | +## increment revision. | ||
33 | +## | ||
34 | +## After merging changes that have changed the API in a backwards | ||
35 | +## comptable way set revision to 0 and bump both current and age. | ||
36 | +## | ||
37 | +## Do not change the API in a backwards incompatible way. | ||
38 | +## | ||
39 | +## See "Libtool: Updating version info" | ||
40 | +## (https://www.gnu.org/software/libtool/manual/html_node/Updating-version-info.html) | ||
41 | +## for more into | ||
42 | +## | ||
43 | if INCREMENTED_SONAME | ||
44 | -libaspell_la_LDFLAGS = -version-info 18:0:2 -no-undefined | ||
45 | +libaspell_la_LDFLAGS = -version-info 19:0:3 -no-undefined | ||
46 | else | ||
47 | ## Use C-1:R:A | ||
48 | -libaspell_la_LDFLAGS = -version-info 17:0:2 -no-undefined | ||
49 | +libaspell_la_LDFLAGS = -version-info 18:0:3 -no-undefined | ||
50 | endif | ||
51 | |||
52 | if PSPELL_COMPATIBILITY | ||
53 | @@ -113,11 +120,7 @@ libpspell_la_SOURCES = lib/dummy.cpp | ||
54 | |||
55 | libpspell_la_LIBADD = libaspell.la | ||
56 | |||
57 | -if INCREMENTED_SONAME | ||
58 | -libpspell_la_LDFLAGS = -version-info 18:0:2 -no-undefined | ||
59 | -else | ||
60 | -libpspell_la_LDFLAGS = -version-info 17:0:2 -no-undefined | ||
61 | -endif | ||
62 | +libpspell_la_LDFLAGS = $(libaspell_la_LDFLAGS) | ||
63 | |||
64 | endif | ||
65 | |||
66 | -- | ||
67 | 2.17.1 | ||
68 | |||