1 files changed, 27 insertions, 0 deletions
diff --git a/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch b/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch
new file mode 100644
index 0000000000..c89ca20726
--- /dev/null
+++ b/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch
@@ -0,0 +1,27 @@
+From 78420a75aeb70569a8cd79fa0fea7b786b6f785f Mon Sep 17 00:00:00 2001
+From: Philip Withnall <pwithnall@endlessos.org>
+Date: Wed, 24 Feb 2021 17:33:38 +0000
+Subject: [PATCH 1/5] glocalfileoutputstream: Fix a typo in a comment
+Signed-off-by: Philip Withnall <pwithnall@endlessos.org>
+Upstream-Status: Backport [https://mirrors.ocf.berkeley.edu/ubuntu/pool/main/g/glib2.0/glib2.0_2.64.6-1~ubuntu20.04.3.debian.tar.xz]
+CVE: CVE-2021-28153
+Signed-off-by: Neetika Singh <Neetika.Singh@kpit.com>
+Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
+---
+ gio/glocalfileoutputstream.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+--- a/gio/glocalfileoutputstream.c
+++ b/gio/glocalfileoutputstream.c
+@@ -851,7 +851,7 @@ handle_overwrite_open (const char    *fi
+   mode = mode_from_flags_or_info (flags, reference_info);
+ 
+   /* We only need read access to the original file if we are creating a backup.
+-   * We also add O_CREATE to avoid a race if the file was just removed */
+   * We also add O_CREAT to avoid a race if the file was just removed */
+   if (create_backup || readable)
+     open_flags = O_RDWR | O_CREAT | O_BINARY;
+   else

diff --git a/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch b/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch new file mode 100644 index 0000000000..c89ca20726 --- /dev/null +++ b/meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch
@@ -0,0 +1,27 @@
	1	From 78420a75aeb70569a8cd79fa0fea7b786b6f785f Mon Sep 17 00:00:00 2001
	2	From: Philip Withnall <pwithnall@endlessos.org>
	3	Date: Wed, 24 Feb 2021 17:33:38 +0000
	4	Subject: [PATCH 1/5] glocalfileoutputstream: Fix a typo in a comment
	5
	6	Signed-off-by: Philip Withnall <pwithnall@endlessos.org>
	7
	8	Upstream-Status: Backport [https://mirrors.ocf.berkeley.edu/ubuntu/pool/main/g/glib2.0/glib2.0_2.64.6-1~ubuntu20.04.3.debian.tar.xz]
	9	CVE: CVE-2021-28153
	10	Signed-off-by: Neetika Singh <Neetika.Singh@kpit.com>
	11	Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
	12
	13	---
	14	gio/glocalfileoutputstream.c \| 2 +-
	15	1 file changed, 1 insertion(+), 1 deletion(-)
	16
	17	--- a/gio/glocalfileoutputstream.c
	18	+++ b/gio/glocalfileoutputstream.c
	19	@@ -851,7 +851,7 @@ handle_overwrite_open (const char *fi
	20	mode = mode_from_flags_or_info (flags, reference_info);
	21
	22	/* We only need read access to the original file if we are creating a backup.
	23	- * We also add O_CREATE to avoid a race if the file was just removed */
	24	+ * We also add O_CREAT to avoid a race if the file was just removed */
	25	if (create_backup \|\| readable)
	26	open_flags = O_RDWR \| O_CREAT \| O_BINARY;
	27	else