summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/bzip2
diff options
context:
space:
mode:
Diffstat (limited to 'meta/recipes-extended/bzip2')
-rw-r--r--meta/recipes-extended/bzip2/bzip2-1.0.6/CVE-2016-3189.patch18
-rw-r--r--meta/recipes-extended/bzip2/bzip2_1.0.6.bb4
2 files changed, 21 insertions, 1 deletions
diff --git a/meta/recipes-extended/bzip2/bzip2-1.0.6/CVE-2016-3189.patch b/meta/recipes-extended/bzip2/bzip2-1.0.6/CVE-2016-3189.patch
new file mode 100644
index 0000000000..1d0c3a6dd3
--- /dev/null
+++ b/meta/recipes-extended/bzip2/bzip2-1.0.6/CVE-2016-3189.patch
@@ -0,0 +1,18 @@
1Upstream-Status: Backport
2https://bugzilla.suse.com/attachment.cgi?id=681334
3
4CVE: CVE-2016-3189
5Signed-off-by: Armin Kuster <akuster@mvista.com>
6
7Index: bzip2-1.0.6/bzip2recover.c
8===================================================================
9--- bzip2-1.0.6.orig/bzip2recover.c
10+++ bzip2-1.0.6/bzip2recover.c
11@@ -457,6 +457,7 @@ Int32 main ( Int32 argc, Char** argv )
12 bsPutUChar ( bsWr, 0x50 ); bsPutUChar ( bsWr, 0x90 );
13 bsPutUInt32 ( bsWr, blockCRC );
14 bsClose ( bsWr );
15+ outFile = NULL;
16 }
17 if (wrBlock >= rbCtr) break;
18 wrBlock++;
diff --git a/meta/recipes-extended/bzip2/bzip2_1.0.6.bb b/meta/recipes-extended/bzip2/bzip2_1.0.6.bb
index f717d85f4f..ef7bc89765 100644
--- a/meta/recipes-extended/bzip2/bzip2_1.0.6.bb
+++ b/meta/recipes-extended/bzip2/bzip2_1.0.6.bb
@@ -12,7 +12,9 @@ SRC_URI = "http://www.bzip.org/${PV}/${BP}.tar.gz \
12 file://fix-bunzip2-qt-returns-0-for-corrupt-archives.patch \ 12 file://fix-bunzip2-qt-returns-0-for-corrupt-archives.patch \
13 file://configure.ac;subdir=${BP} \ 13 file://configure.ac;subdir=${BP} \
14 file://Makefile.am;subdir=${BP} \ 14 file://Makefile.am;subdir=${BP} \
15 file://run-ptest" 15 file://run-ptest \
16 file://CVE-2016-3189.patch \
17 "
16 18
17SRC_URI[md5sum] = "00b516f4704d4a7cb50a1d97e6e8e15b" 19SRC_URI[md5sum] = "00b516f4704d4a7cb50a1d97e6e8e15b"
18SRC_URI[sha256sum] = "a2848f34fcd5d6cf47def00461fcb528a0484d8edef8208d6d2e2909dc61d9cd" 20SRC_URI[sha256sum] = "a2848f34fcd5d6cf47def00461fcb528a0484d8edef8208d6d2e2909dc61d9cd"