From 0abe94ddc51e964eec027d22637381f274f8b133 Mon Sep 17 00:00:00 2001
From: Sona Sarmadi <sona.sarmadi@enea.com>
Date: Wed, 24 Feb 2016 09:07:42 +0100
Subject: libxml2: CVE-2015-8317

Fixes out-of-bounds heap read when parsing file with unfinished
xml declaration.

Reference:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8317

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
---
 meta/recipes-core/libxml/libxml2.inc | 1 +
 1 file changed, 1 insertion(+)

(limited to 'meta/recipes-core/libxml/libxml2.inc')

diff --git a/meta/recipes-core/libxml/libxml2.inc b/meta/recipes-core/libxml/libxml2.inc
index 2dafeb446d..2dc4d575f6 100644
--- a/meta/recipes-core/libxml/libxml2.inc
+++ b/meta/recipes-core/libxml/libxml2.inc
@@ -26,6 +26,7 @@ SRC_URI = "ftp://xmlsoft.org/libxml2/libxml2-${PV}.tar.gz;name=libtar \
            file://CVE-2015-7942.patch \
            file://CVE-2015-8035.patch \
            file://CVE-2015-8241.patch \
+           file://CVE-2015-8317-Fail-parsing-early-on-if-encoding-conversion-failed.patch \
           "
 
 BINCONFIG = "${bindir}/xml2-config"
-- 
cgit v1.2.3-54-g00ecf