From c15130e80eb40e80dccc140ca79cae8b01324e04 Mon Sep 17 00:00:00 2001
From: Sona Sarmadi <sona.sarmadi@enea.com>
Date: Wed, 3 Feb 2016 11:59:17 +0100
Subject: glibc: CVE-2015-8778

Fixes integer overflow in hcreate and hcreate_r.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-8778
Upstream bug: https://sourceware.org/bugzilla/show_bug.cgi?id=18240
CVE assignment: http://seclists.org/oss-sec/2016/q1/153

Upstream fix:
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=287de30e170cb765ed326d23d22791a81aab6e0f

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
---
 meta/recipes-core/glibc/glibc_2.20.bb | 1 +
 1 file changed, 1 insertion(+)

(limited to 'meta/recipes-core/glibc/glibc_2.20.bb')

diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb
index 7bf4dbabf7..b9891d85ce 100644
--- a/meta/recipes-core/glibc/glibc_2.20.bb
+++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -53,6 +53,7 @@ CVEPATCHES = "\
         file://CVE-2014-9761_2.patch \
         file://CVE-2015-8776.patch \
         file://CVE-2015-8777.patch \
+        file://CVE-2015-8778.patch \
     "
 LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \
       file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
-- 
cgit v1.2.3-54-g00ecf