From bc82af0a6a8e7e9422f452a7106caa257af0b6b6 Mon Sep 17 00:00:00 2001
From: Sona Sarmadi <sona.sarmadi@enea.com>
Date: Tue, 15 Mar 2016 07:17:14 +0100
Subject: libpng: CVE-2015-8472

Fixes buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

This patch fixes an incomplete patch in CVE-2015-8126

Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472

Upstream patch:
https://github.com/glennrp/libpng/commit/9f2ad4928e47036cf1ac9b8fe45a491f15be2324

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Paul Vaduva <Paul.Vaduva@enea.com>
---
 meta/recipes-multimedia/libpng/libpng_1.6.13.bb | 1 +
 1 file changed, 1 insertion(+)

(limited to 'meta/recipes-multimedia/libpng/libpng_1.6.13.bb')

diff --git a/meta/recipes-multimedia/libpng/libpng_1.6.13.bb b/meta/recipes-multimedia/libpng/libpng_1.6.13.bb
index 80dcc0a63f..b197a89677 100644
--- a/meta/recipes-multimedia/libpng/libpng_1.6.13.bb
+++ b/meta/recipes-multimedia/libpng/libpng_1.6.13.bb
@@ -15,6 +15,7 @@ SRC_URI += "\
             file://CVE-2015-8126_2.patch \
             file://CVE-2015-8126_3.patch \
             file://CVE-2015-8126_4.patch \
+            file://CVE-2015-8472.patch \
             "
 
 SRC_URI[md5sum] = "9822c25466f060142359f80ed142c9e5"
-- 
cgit v1.2.3-54-g00ecf