binutls: Security fix for CVE-2017-9747

Affects: <= 2.28 (From OE-Core rev: 2a40f61560be1db90aec08493f6c760de5b4d264) Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Armin Kuster <akuster808@gmail.com> 2017-11-26 16:22:44 -0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2017-12-11 22:02:58 +0000
commit: 6b3fee6bd7574e883eef69fa0335221a140157ca (patch)
tree: 5d6d9b6f074b4a34055d86de28d05b70b77818bb /meta
parent: b519ef3fc3cbf7de06addad80de4720c632f4d60 (diff)
download: poky-6b3fee6bd7574e883eef69fa0335221a140157ca.tar.gz
2 files changed, 44 insertions, 0 deletions
diff --git a/meta/recipes-devtools/binutils/binutils-2.28.inc b/meta/recipes-devtools/binutils/binutils-2.28.inc
index 235306ba5e..6822adbd9a 100644
--- a/meta/recipes-devtools/binutils/binutils-2.28.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.28.inc
@@ -58,6 +58,7 @@ SRC_URI = "\
     file://CVE-2017-9744.patch \
     file://CVE-2017-9745.patch \
     file://CVE-2017-9746.patch \
+     file://CVE-2017-9747.patch \
 "
 S  = "${WORKDIR}/git"
diff --git a/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch b/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch
new file mode 100644
index 0000000000..41ead54a98
--- /dev/null
+++ b/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch
@@ -0,0 +1,43 @@
+From 62b76e4b6e0b4cb5b3e0053d1de4097b32577049 Mon Sep 17 00:00:00 2001
+From: Nick Clifton <nickc@redhat.com>
+Date: Thu, 15 Jun 2017 13:08:47 +0100
+Subject: [PATCH] Fix address violation parsing a corrupt ieee binary.
+        PR binutils/21581
+        (ieee_archive_p): Use a static buffer to avoid compiler bugs.
+Upstream-Status: Backport
+CVE: CVE-2017-9747
+Signed-off-by: Armin Kuster <akuster@mvista.com>
+---
+ bfd/ChangeLog | 2 ++
+ bfd/ieee.c    | 2 +-
+ 2 files changed, 3 insertions(+), 1 deletion(-)
+Index: git/bfd/ieee.c
+===================================================================
+--- git.orig/bfd/ieee.c
+++ git/bfd/ieee.c
+@@ -1357,7 +1357,7 @@ ieee_archive_p (bfd *abfd)
+ {
+   char *library;
+   unsigned int i;
+-  unsigned char buffer[512];
+  static unsigned char buffer[512];
+   file_ptr buffer_offset = 0;
+   ieee_ar_data_type *save = abfd->tdata.ieee_ar_data;
+   ieee_ar_data_type *ieee;
+Index: git/bfd/ChangeLog
+===================================================================
+--- git.orig/bfd/ChangeLog
+++ git/bfd/ChangeLog
+@@ -1,3 +1,8 @@
+2017-06-15  Nick Clifton  <nickc@redhat.com>
+
+       PR binutils/21581
+       (ieee_archive_p): Likewise.
+
+ 2017-06-14  Nick Clifton  <nickc@redhat.com>
+  
+        PR binutils/21578
author	Armin Kuster <akuster808@gmail.com>	2017-11-26 16:22:44 -0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-12-11 22:02:58 +0000
commit	6b3fee6bd7574e883eef69fa0335221a140157ca (patch)
tree	5d6d9b6f074b4a34055d86de28d05b70b77818bb /meta
parent	b519ef3fc3cbf7de06addad80de4720c632f4d60 (diff)
download	poky-6b3fee6bd7574e883eef69fa0335221a140157ca.tar.gz

diff --git a/meta/recipes-devtools/binutils/binutils-2.28.inc b/meta/recipes-devtools/binutils/binutils-2.28.inc index 235306ba5e..6822adbd9a 100644 --- a/meta/recipes-devtools/binutils/binutils-2.28.inc +++ b/meta/recipes-devtools/binutils/binutils-2.28.inc
@@ -58,6 +58,7 @@ SRC_URI = "\
58	file://CVE-2017-9744.patch \	58	file://CVE-2017-9744.patch \
59	file://CVE-2017-9745.patch \	59	file://CVE-2017-9745.patch \
60	file://CVE-2017-9746.patch \	60	file://CVE-2017-9746.patch \
		61	file://CVE-2017-9747.patch \
61	"	62	"
62	S = "${WORKDIR}/git"	63	S = "${WORKDIR}/git"
63		64


diff --git a/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch b/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch new file mode 100644 index 0000000000..41ead54a98 --- /dev/null +++ b/meta/recipes-devtools/binutils/binutils/CVE-2017-9747.patch
@@ -0,0 +1,43 @@
		1	From 62b76e4b6e0b4cb5b3e0053d1de4097b32577049 Mon Sep 17 00:00:00 2001
		2	From: Nick Clifton <nickc@redhat.com>
		3	Date: Thu, 15 Jun 2017 13:08:47 +0100
		4	Subject: [PATCH] Fix address violation parsing a corrupt ieee binary.
		5
		6	PR binutils/21581
		7	(ieee_archive_p): Use a static buffer to avoid compiler bugs.
		8
		9	Upstream-Status: Backport
		10	CVE: CVE-2017-9747
		11	Signed-off-by: Armin Kuster <akuster@mvista.com>
		12
		13	---
		14	bfd/ChangeLog \| 2 ++
		15	bfd/ieee.c \| 2 +-
		16	2 files changed, 3 insertions(+), 1 deletion(-)
		17
		18	Index: git/bfd/ieee.c
		19	===================================================================
		20	--- git.orig/bfd/ieee.c
		21	+++ git/bfd/ieee.c
		22	@@ -1357,7 +1357,7 @@ ieee_archive_p (bfd *abfd)
		23	{
		24	char *library;
		25	unsigned int i;
		26	- unsigned char buffer[512];
		27	+ static unsigned char buffer[512];
		28	file_ptr buffer_offset = 0;
		29	ieee_ar_data_type *save = abfd->tdata.ieee_ar_data;
		30	ieee_ar_data_type *ieee;
		31	Index: git/bfd/ChangeLog
		32	===================================================================
		33	--- git.orig/bfd/ChangeLog
		34	+++ git/bfd/ChangeLog
		35	@@ -1,3 +1,8 @@
		36	+2017-06-15 Nick Clifton <nickc@redhat.com>
		37	+
		38	+ PR binutils/21581
		39	+ (ieee_archive_p): Likewise.
		40	+
		41	2017-06-14 Nick Clifton <nickc@redhat.com>
		42
		43	PR binutils/21578