gnupg: integrate fix for CVE-2012-6085

From http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6085: "The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when importing a key, allows remote attackers to corrupt the public keyring database or cause a denial of service (application crash) via a crafted length field of an OpenPGP packet." Patch taken from upstream git, which is identical in both branches. (From OE-Core rev: 44ed6605c1978325782d229d0c01329465c4c5c7) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Ross Burton <ross.burton@intel.com> 2013-04-29 14:47:22 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2013-04-29 18:00:00 +0100
commit: 4a9b9004bca6d1cb58ecc8bccf7f09b38b0e6c73 (patch)
tree: f3f3e7eb9c869655abe5e83584c20a8d6630df0b /meta/recipes-support/gnupg/gnupg_2.0.19.bb
parent: a69769e3b3e7f475e416d3a49d68dab088592851 (diff)
download: poky-4a9b9004bca6d1cb58ecc8bccf7f09b38b0e6c73.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/recipes-support/gnupg/gnupg_2.0.19.bb b/meta/recipes-support/gnupg/gnupg_2.0.19.bb
index 996a8e80dc..6b0ce668f5 100644
--- a/meta/recipes-support/gnupg/gnupg_2.0.19.bb
+++ b/meta/recipes-support/gnupg/gnupg_2.0.19.bb
@@ -11,7 +11,8 @@ PR = "r4"
 inherit autotools gettext
-SRC_URI = "ftp://ftp.gnupg.org/gcrypt/${BPN}/${BPN}-${PV}.tar.bz2"
+SRC_URI = "ftp://ftp.gnupg.org/gcrypt/${BPN}/${BPN}-${PV}.tar.bz2 \
+           file://cve-2012-6085.patch"
 SRC_URI[md5sum] = "6a8589381ca1b0c1a921e9955f42b016"
 SRC_URI[sha256sum] = "efa23a8a925adb51c7d3b708c25b6d000300f5ce37de9bdec6453be7b419c622"
author	Ross Burton <ross.burton@intel.com>	2013-04-29 14:47:22 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2013-04-29 18:00:00 +0100
commit	4a9b9004bca6d1cb58ecc8bccf7f09b38b0e6c73 (patch)
tree	f3f3e7eb9c869655abe5e83584c20a8d6630df0b /meta/recipes-support/gnupg/gnupg_2.0.19.bb
parent	a69769e3b3e7f475e416d3a49d68dab088592851 (diff)
download	poky-4a9b9004bca6d1cb58ecc8bccf7f09b38b0e6c73.tar.gz

diff --git a/meta/recipes-support/gnupg/gnupg_2.0.19.bb b/meta/recipes-support/gnupg/gnupg_2.0.19.bb index 996a8e80dc..6b0ce668f5 100644 --- a/meta/recipes-support/gnupg/gnupg_2.0.19.bb +++ b/meta/recipes-support/gnupg/gnupg_2.0.19.bb
@@ -11,7 +11,8 @@ PR = "r4"
11		11
12	inherit autotools gettext	12	inherit autotools gettext
13		13
14	SRC_URI = "ftp://ftp.gnupg.org/gcrypt/${BPN}/${BPN}-${PV}.tar.bz2"	14	SRC_URI = "ftp://ftp.gnupg.org/gcrypt/${BPN}/${BPN}-${PV}.tar.bz2 \
		15	file://cve-2012-6085.patch"
15		16
16	SRC_URI[md5sum] = "6a8589381ca1b0c1a921e9955f42b016"	17	SRC_URI[md5sum] = "6a8589381ca1b0c1a921e9955f42b016"
17	SRC_URI[sha256sum] = "efa23a8a925adb51c7d3b708c25b6d000300f5ce37de9bdec6453be7b419c622"	18	SRC_URI[sha256sum] = "efa23a8a925adb51c7d3b708c25b6d000300f5ce37de9bdec6453be7b419c622"