2 files changed, 38 insertions, 0 deletions
diff --git a/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch b/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch
new file mode 100644
index 0000000000..26779aa572
--- /dev/null
+++ b/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch
@@ -0,0 +1,37 @@
+From d2f873a541c72b0f67e15562819bf98b884b30b7 Mon Sep 17 00:00:00 2001
+From: Hongxu Jia <hongxu.jia@windriver.com>
+Date: Wed, 23 Aug 2017 16:04:49 +0800
+Subject: [PATCH] fix CVE-2017-8872
+this makes xmlHaltParser "empty" the buffer, as it resets cur and ava
+il too here.
+this seems to cure this specific issue, and also passes the testsuite
+Signed-off-by: Marcus Meissner <meissner@suse.de>
+https://bugzilla.gnome.org/show_bug.cgi?id=775200
+Upstream-Status: Backport [https://bugzilla.gnome.org/attachment.cgi?id=355527&action=diff]
+Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
+---
+ parser.c | 4 ++++
+ 1 file changed, 4 insertions(+)
+diff --git a/parser.c b/parser.c
+index 9506ead..6c07ffd 100644
+--- a/parser.c
+++ b/parser.c
+@@ -12664,6 +12664,10 @@ xmlHaltParser(xmlParserCtxtPtr ctxt) {
+        }
+        ctxt->input->cur = BAD_CAST"";
+        ctxt->input->base = ctxt->input->cur;
+       if (ctxt->input->buf) {
+               xmlBufEmpty (ctxt->input->buf->buffer);
+       } else
+               ctxt->input->length = 0;
+     }
+ }
+ 
+-- 
+2.7.4
diff --git a/meta/recipes-core/libxml/libxml2_2.9.4.bb b/meta/recipes-core/libxml/libxml2_2.9.4.bb
index f67c47d29c..107539b50d 100644
--- a/meta/recipes-core/libxml/libxml2_2.9.4.bb
+++ b/meta/recipes-core/libxml/libxml2_2.9.4.bb
@@ -28,6 +28,7 @@ SRC_URI = "ftp://xmlsoft.org/libxml2/libxml2-${PV}.tar.gz;name=libtar \
           file://libxml2-CVE-2017-9049_CVE-2017-9050.patch \
           file://libxml2-CVE-2017-5969.patch \
           file://libxml2-CVE-2017-0663.patch \
+           file://libxml2-CVE-2017-8872.patch \
           file://0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch \
           "

diff --git a/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch b/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch new file mode 100644 index 0000000000..26779aa572 --- /dev/null +++ b/meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-8872.patch
@@ -0,0 +1,37 @@
		1	From d2f873a541c72b0f67e15562819bf98b884b30b7 Mon Sep 17 00:00:00 2001
		2	From: Hongxu Jia <hongxu.jia@windriver.com>
		3	Date: Wed, 23 Aug 2017 16:04:49 +0800
		4	Subject: [PATCH] fix CVE-2017-8872
		5
		6	this makes xmlHaltParser "empty" the buffer, as it resets cur and ava
		7	il too here.
		8
		9	this seems to cure this specific issue, and also passes the testsuite
		10
		11	Signed-off-by: Marcus Meissner <meissner@suse.de>
		12
		13	https://bugzilla.gnome.org/show_bug.cgi?id=775200
		14	Upstream-Status: Backport [https://bugzilla.gnome.org/attachment.cgi?id=355527&action=diff]
		15	Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
		16	---
		17	parser.c \| 4 ++++
		18	1 file changed, 4 insertions(+)
		19
		20	diff --git a/parser.c b/parser.c
		21	index 9506ead..6c07ffd 100644
		22	--- a/parser.c
		23	+++ b/parser.c
		24	@@ -12664,6 +12664,10 @@ xmlHaltParser(xmlParserCtxtPtr ctxt) {
		25	}
		26	ctxt->input->cur = BAD_CAST"";
		27	ctxt->input->base = ctxt->input->cur;
		28	+ if (ctxt->input->buf) {
		29	+ xmlBufEmpty (ctxt->input->buf->buffer);
		30	+ } else
		31	+ ctxt->input->length = 0;
		32	}
		33	}
		34
		35	--
		36	2.7.4
		37


diff --git a/meta/recipes-core/libxml/libxml2_2.9.4.bb b/meta/recipes-core/libxml/libxml2_2.9.4.bb index f67c47d29c..107539b50d 100644 --- a/meta/recipes-core/libxml/libxml2_2.9.4.bb +++ b/meta/recipes-core/libxml/libxml2_2.9.4.bb
@@ -28,6 +28,7 @@ SRC_URI = "ftp://xmlsoft.org/libxml2/libxml2-${PV}.tar.gz;name=libtar \
28	file://libxml2-CVE-2017-9049_CVE-2017-9050.patch \	28	file://libxml2-CVE-2017-9049_CVE-2017-9050.patch \
29	file://libxml2-CVE-2017-5969.patch \	29	file://libxml2-CVE-2017-5969.patch \
30	file://libxml2-CVE-2017-0663.patch \	30	file://libxml2-CVE-2017-0663.patch \
		31	file://libxml2-CVE-2017-8872.patch \
31	file://0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch \	32	file://0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch \
32	"	33	"
33		34