diff options
Diffstat (limited to 'meta/recipes-graphics/xorg-xserver/xserver-xorg.inc')
| -rw-r--r-- | meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | 14 |
1 files changed, 11 insertions, 3 deletions
diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc index b4f0760176..ce57982a7d 100644 --- a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | |||
| @@ -16,9 +16,17 @@ PE = "2" | |||
| 16 | INC_PR = "r8" | 16 | INC_PR = "r8" |
| 17 | 17 | ||
| 18 | XORG_PN = "xorg-server" | 18 | XORG_PN = "xorg-server" |
| 19 | SRC_URI = "${XORG_MIRROR}/individual/xserver/${XORG_PN}-${PV}.tar.bz2" | 19 | SRC_URI = "${XORG_MIRROR}/individual/xserver/${XORG_PN}-${PV}.tar.gz" |
| 20 | 20 | ||
| 21 | CVE_PRODUCT = "xorg-server" | 21 | CVE_PRODUCT = "xorg-server x_server" |
| 22 | # This is specific to Debian's xserver-wrapper.c | ||
| 23 | CVE_CHECK_WHITELIST += "CVE-2011-4613" | ||
| 24 | # As per upstream, exploiting this flaw is non-trivial and it requires exact | ||
| 25 | # timing on the behalf of the attacker. Many graphical applications exit if their | ||
| 26 | # connection to the X server is lost, so a typical desktop session is either | ||
| 27 | # impossible or difficult to exploit. There is currently no upstream patch | ||
| 28 | # available for this flaw. | ||
| 29 | CVE_CHECK_WHITELIST += "CVE-2020-25697" | ||
| 22 | 30 | ||
| 23 | S = "${WORKDIR}/${XORG_PN}-${PV}" | 31 | S = "${WORKDIR}/${XORG_PN}-${PV}" |
| 24 | 32 | ||