summaryrefslogtreecommitdiffstats
path: root/meta/recipes-support
diff options
context:
space:
mode:
authorMariano Lopez <mariano.lopez@linux.intel.com>2016-01-08 12:03:58 +0000
committerRichard Purdie <richard.purdie@linuxfoundation.org>2016-01-11 23:26:32 +0000
commite5c011b041dc27cdfeb840b6933dcb9752886bb9 (patch)
tree3737c18bbdaf971699c800e8983b25ae29db6fc9 /meta/recipes-support
parentf04fb8806c75fa7eb9d139c4daaae2de6da6e1ea (diff)
downloadpoky-e5c011b041dc27cdfeb840b6933dcb9752886bb9.tar.gz
Add "CVE:" tag to current patches in OE-core
The currnet patches in OE-core doesn't have the "CVE:" tag, now part of the policy of the patches. This is patch add this tag to several patches. There might be patches that I miss; the tag can be added in the future. (From OE-Core rev: 065ebeb3e15311d0d45385e15bf557b1c95b1669) Signed-off-by: Mariano Lopez <mariano.lopez@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support')
-rw-r--r--meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4242.patch1
-rw-r--r--meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4351.patch1
-rw-r--r--meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4576.patch1
-rw-r--r--meta/recipes-support/gnupg/gnupg-1.4.7/GnuPG1-CVE-2012-6085.patch1
-rw-r--r--meta/recipes-support/libxslt/libxslt/CVE-2015-7995.patch1
-rw-r--r--meta/recipes-support/libyaml/files/libyaml-CVE-2014-9130.patch1
-rw-r--r--meta/recipes-support/vte/vte-0.28.2/cve-2012-2738.patch1
7 files changed, 7 insertions, 0 deletions
diff --git a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4242.patch b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4242.patch
index c9addca28e..f0667741c8 100644
--- a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4242.patch
+++ b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4242.patch
@@ -11,6 +11,7 @@ git://git.gnupg.org/libgcrypt.git
11exponents in secure memory. 11exponents in secure memory.
12 12
13Upstream-Status: Backport 13Upstream-Status: Backport
14CVE: CVE-2013-4242
14 15
15Signed-off-by: Kai Kang <kai.kang@windriver.com> 16Signed-off-by: Kai Kang <kai.kang@windriver.com>
16-- 17--
diff --git a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4351.patch b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4351.patch
index b29ede4233..b50a32f40c 100644
--- a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4351.patch
+++ b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4351.patch
@@ -1,4 +1,5 @@
1Upstream-Status: Backport 1Upstream-Status: Backport
2CVE: CVE-2013-4351
2 3
3Index: gnupg-1.4.7/g10/getkey.c 4Index: gnupg-1.4.7/g10/getkey.c
4=================================================================== 5===================================================================
diff --git a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4576.patch b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4576.patch
index b1a22f5853..5dcde1f9cb 100644
--- a/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4576.patch
+++ b/meta/recipes-support/gnupg/gnupg-1.4.7/CVE-2013-4576.patch
@@ -1,4 +1,5 @@
1Upstream-Status: Backport 1Upstream-Status: Backport
2CVE: CVE-2013-4576
2 3
3Index: gnupg-1.4.7/cipher/dsa.c 4Index: gnupg-1.4.7/cipher/dsa.c
4=================================================================== 5===================================================================
diff --git a/meta/recipes-support/gnupg/gnupg-1.4.7/GnuPG1-CVE-2012-6085.patch b/meta/recipes-support/gnupg/gnupg-1.4.7/GnuPG1-CVE-2012-6085.patch
index 8b5d9a1693..362717636b 100644
--- a/meta/recipes-support/gnupg/gnupg-1.4.7/GnuPG1-CVE-2012-6085.patch
+++ b/meta/recipes-support/gnupg/gnupg-1.4.7/GnuPG1-CVE-2012-6085.patch
@@ -17,6 +17,7 @@ Date: Thu Dec 20 09:43:41 2012 +0100
17 (cherry-picked from commit f795a0d59e197455f8723c300eebf59e09853efa) 17 (cherry-picked from commit f795a0d59e197455f8723c300eebf59e09853efa)
18 18
19Upstream-Status: Backport 19Upstream-Status: Backport
20CVE: CVE-2012-6085
20 21
21Signed-off-by: Saul Wold <sgw@linux.intel.com> 22Signed-off-by: Saul Wold <sgw@linux.intel.com>
22 23
diff --git a/meta/recipes-support/libxslt/libxslt/CVE-2015-7995.patch b/meta/recipes-support/libxslt/libxslt/CVE-2015-7995.patch
index e4d09c2ac7..f4113efba9 100644
--- a/meta/recipes-support/libxslt/libxslt/CVE-2015-7995.patch
+++ b/meta/recipes-support/libxslt/libxslt/CVE-2015-7995.patch
@@ -8,6 +8,7 @@ We need to check that the parent node is an element before dereferencing
8its namespace 8its namespace
9 9
10Upstream-Status: Backport 10Upstream-Status: Backport
11CVE: CVE-2015-7995
11 12
12https://git.gnome.org/browse/libxslt/commit/?id=7ca19df892ca22d9314e95d59ce2abdeff46b617 13https://git.gnome.org/browse/libxslt/commit/?id=7ca19df892ca22d9314e95d59ce2abdeff46b617
13 14
diff --git a/meta/recipes-support/libyaml/files/libyaml-CVE-2014-9130.patch b/meta/recipes-support/libyaml/files/libyaml-CVE-2014-9130.patch
index 3c4a00ef3e..61fa7e5692 100644
--- a/meta/recipes-support/libyaml/files/libyaml-CVE-2014-9130.patch
+++ b/meta/recipes-support/libyaml/files/libyaml-CVE-2014-9130.patch
@@ -10,6 +10,7 @@ The patch comes from
10https://bitbucket.org/xi/libyaml/commits/2b9156756423e967cfd09a61d125d883fca6f4f2 10https://bitbucket.org/xi/libyaml/commits/2b9156756423e967cfd09a61d125d883fca6f4f2
11 11
12Upstream-Status: Backport 12Upstream-Status: Backport
13CVE: CVE-2014-9130
13 14
14Signed-off-by: Yue Tao <yue.tao@windriver.com> 15Signed-off-by: Yue Tao <yue.tao@windriver.com>
15 16
diff --git a/meta/recipes-support/vte/vte-0.28.2/cve-2012-2738.patch b/meta/recipes-support/vte/vte-0.28.2/cve-2012-2738.patch
index 2407771804..9b9980397a 100644
--- a/meta/recipes-support/vte/vte-0.28.2/cve-2012-2738.patch
+++ b/meta/recipes-support/vte/vte-0.28.2/cve-2012-2738.patch
@@ -1,4 +1,5 @@
1Upstream-Status: Backport 1Upstream-Status: Backport
2CVE: CVE-2012-2738
2Signed-off-by: Ross Burton <ross.burton@intel.com> 3Signed-off-by: Ross Burton <ross.burton@intel.com>
3 4
4From e524b0b3bd8fad844ffa73927c199545b892cdbd Mon Sep 17 00:00:00 2001 5From e524b0b3bd8fad844ffa73927c199545b892cdbd Mon Sep 17 00:00:00 2001