diff options
| author | Armin Kuster <akuster808@gmail.com> | 2017-11-26 13:28:58 -0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-12-11 22:02:58 +0000 |
| commit | 7ac79cbbe146f8a3904c1922489fde14b95a8e7d (patch) | |
| tree | 8a3239b3b0640fb4caefe82a7047d8d12a4c5bd2 /meta | |
| parent | ffdcca938be9356b009a0c0daf012603164a8e92 (diff) | |
| download | poky-7ac79cbbe146f8a3904c1922489fde14b95a8e7d.tar.gz | |
binutils: Security fix for CVE-2017-9038 and CVE-2017-9044
(From OE-Core rev: 32e5dedd7bf5b249a8f89f88bbe17d5ba71039b7)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta')
| -rw-r--r-- | meta/recipes-devtools/binutils/binutils-2.28.inc | 1 | ||||
| -rw-r--r-- | meta/recipes-devtools/binutils/binutils/CVE-2017-9038_9044.patch | 51 |
2 files changed, 52 insertions, 0 deletions
diff --git a/meta/recipes-devtools/binutils/binutils-2.28.inc b/meta/recipes-devtools/binutils/binutils-2.28.inc index 5b6270a7c2..377165a7ff 100644 --- a/meta/recipes-devtools/binutils/binutils-2.28.inc +++ b/meta/recipes-devtools/binutils/binutils-2.28.inc | |||
| @@ -51,6 +51,7 @@ SRC_URI = "\ | |||
| 51 | file://CVE-2017-8396_8397.patch \ | 51 | file://CVE-2017-8396_8397.patch \ |
| 52 | file://CVE-2017-8398.patch \ | 52 | file://CVE-2017-8398.patch \ |
| 53 | file://CVE-2017-8421.patch \ | 53 | file://CVE-2017-8421.patch \ |
| 54 | file://CVE-2017-9038_9044.patch \ | ||
| 54 | " | 55 | " |
| 55 | S = "${WORKDIR}/git" | 56 | S = "${WORKDIR}/git" |
| 56 | 57 | ||
diff --git a/meta/recipes-devtools/binutils/binutils/CVE-2017-9038_9044.patch b/meta/recipes-devtools/binutils/binutils/CVE-2017-9038_9044.patch new file mode 100644 index 0000000000..535efc314f --- /dev/null +++ b/meta/recipes-devtools/binutils/binutils/CVE-2017-9038_9044.patch | |||
| @@ -0,0 +1,51 @@ | |||
| 1 | From f32ba72991d2406b21ab17edc234a2f3fa7fb23d Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Nick Clifton <nickc@redhat.com> | ||
| 3 | Date: Mon, 3 Apr 2017 11:01:45 +0100 | ||
| 4 | Subject: [PATCH] readelf: Update check for invalid word offsets in ARM unwind | ||
| 5 | information. | ||
| 6 | |||
| 7 | PR binutils/21343 | ||
| 8 | * readelf.c (get_unwind_section_word): Fix snafu checking for | ||
| 9 | invalid word offsets in ARM unwind information. | ||
| 10 | |||
| 11 | Upstream-Status: Backport | ||
| 12 | CVE: CVE-2017-9038 | ||
| 13 | CVE: CVE-2017-9044 | ||
| 14 | Signed-off-by: Armin Kuster <akuster@mvista.com> | ||
| 15 | |||
| 16 | --- | ||
| 17 | binutils/ChangeLog | 6 ++++++ | ||
| 18 | binutils/readelf.c | 6 +++--- | ||
| 19 | 2 files changed, 9 insertions(+), 3 deletions(-) | ||
| 20 | |||
| 21 | Index: git/binutils/readelf.c | ||
| 22 | =================================================================== | ||
| 23 | --- git.orig/binutils/readelf.c | ||
| 24 | +++ git/binutils/readelf.c | ||
| 25 | @@ -7972,9 +7972,9 @@ get_unwind_section_word (struct arm_unw_ | ||
| 26 | return FALSE; | ||
| 27 | |||
| 28 | /* If the offset is invalid then fail. */ | ||
| 29 | - if (word_offset > (sec->sh_size - 4) | ||
| 30 | - /* PR 18879 */ | ||
| 31 | - || (sec->sh_size < 5 && word_offset >= sec->sh_size) | ||
| 32 | + if (/* PR 21343 *//* PR 18879 */ | ||
| 33 | + sec->sh_size < 4 | ||
| 34 | + || word_offset > (sec->sh_size - 4) | ||
| 35 | || ((bfd_signed_vma) word_offset) < 0) | ||
| 36 | return FALSE; | ||
| 37 | |||
| 38 | Index: git/binutils/ChangeLog | ||
| 39 | =================================================================== | ||
| 40 | --- git.orig/binutils/ChangeLog | ||
| 41 | +++ git/binutils/ChangeLog | ||
| 42 | @@ -1,3 +1,9 @@ | ||
| 43 | +2017-04-03 Nick Clifton <nickc@redhat.com> | ||
| 44 | + | ||
| 45 | + PR binutils/21343 | ||
| 46 | + * readelf.c (get_unwind_section_word): Fix snafu checking for | ||
| 47 | + invalid word offsets in ARM unwind information. | ||
| 48 | + | ||
| 49 | 2017-05-02 Nick Clifton <nickc@redhat.com> | ||
| 50 | |||
| 51 | PR 21440 | ||