diff options
| author | Mingde (Matthew) Zeng <matthew.zeng@windriver.com> | 2020-07-15 13:43:39 -0400 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2020-07-16 07:14:00 -0700 |
| commit | 3063ae3b14d2220fd54042c9a3869a2d44c48f84 (patch) | |
| tree | 4e8c2c0191d1c4fccbfbc86754195258bb1cafa7 | |
| parent | 2cc2f77dc485f528f13197f722c2f95a7c7dcd99 (diff) | |
| download | meta-openembedded-3063ae3b14d2220fd54042c9a3869a2d44c48f84.tar.gz | |
net-snmp, openjpeg: add proper CVE tags to patches
Signed-off-by: Mingde (Matthew) Zeng <matthew.zeng@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
3 files changed, 11 insertions, 1 deletions
diff --git a/meta-networking/recipes-protocols/net-snmp/net-snmp/CVE-2019-20892.patch b/meta-networking/recipes-protocols/net-snmp/net-snmp/CVE-2019-20892.patch index 3e2637eaa5..ec1b6de8fc 100644 --- a/meta-networking/recipes-protocols/net-snmp/net-snmp/CVE-2019-20892.patch +++ b/meta-networking/recipes-protocols/net-snmp/net-snmp/CVE-2019-20892.patch | |||
| @@ -8,9 +8,11 @@ This patch fixes https://sourceforge.net/p/net-snmp/bugs/2956/. | |||
| 8 | 8 | ||
| 9 | Upstream-Status: Backport | 9 | Upstream-Status: Backport |
| 10 | [ak: fixup for 5.8 context, changes to library/snmpusm.h] | 10 | [ak: fixup for 5.8 context, changes to library/snmpusm.h] |
| 11 | CVE:CVE-2019-20892 | 11 | |
| 12 | CVE: CVE-2019-20892 | ||
| 12 | 13 | ||
| 13 | Signed-off-by: Armin Kuster <akuster@mvista.com> | 14 | Signed-off-by: Armin Kuster <akuster@mvista.com> |
| 15 | Signed-off-by: Mingde (Matthew) Zeng <matthew.zeng@windriver.com> | ||
| 14 | 16 | ||
| 15 | --- | 17 | --- |
| 16 | snmplib/snmp_client.c | 22 +++---------- | 18 | snmplib/snmp_client.c | 22 +++---------- |
diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-6851.patch b/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-6851.patch index 9f2fc901f9..1e14149c85 100644 --- a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-6851.patch +++ b/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-6851.patch | |||
| @@ -4,6 +4,10 @@ Date: Sat, 11 Jan 2020 01:51:19 +0100 | |||
| 4 | Subject: [PATCH] opj_j2k_update_image_dimensions(): reject images whose | 4 | Subject: [PATCH] opj_j2k_update_image_dimensions(): reject images whose |
| 5 | coordinates are beyond INT_MAX (fixes #1228) | 5 | coordinates are beyond INT_MAX (fixes #1228) |
| 6 | 6 | ||
| 7 | CVE: CVE-2020-6851 | ||
| 8 | |||
| 9 | Signed-off-by: Mingde (Matthew) Zeng <matthew.zeng@windriver.com> | ||
| 10 | |||
| 7 | --- | 11 | --- |
| 8 | src/lib/openjp2/j2k.c | 8 ++++++++ | 12 | src/lib/openjp2/j2k.c | 8 ++++++++ |
| 9 | 1 file changed, 8 insertions(+) | 13 | 1 file changed, 8 insertions(+) |
diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-8112.patch b/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-8112.patch index cb250530ef..6158601af0 100644 --- a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-8112.patch +++ b/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2020-8112.patch | |||
| @@ -6,6 +6,10 @@ Subject: [PATCH] opj_tcd_init_tile(): avoid integer overflow | |||
| 6 | That could lead to later assertion failures. | 6 | That could lead to later assertion failures. |
| 7 | 7 | ||
| 8 | Fixes #1231 / CVE-2020-8112 | 8 | Fixes #1231 / CVE-2020-8112 |
| 9 | |||
| 10 | CVE: CVE-2020-8112 | ||
| 11 | |||
| 12 | Signed-off-by: Mingde (Matthew) Zeng <matthew.zeng@windriver.com> | ||
| 9 | --- | 13 | --- |
| 10 | src/lib/openjp2/tcd.c | 20 ++++++++++++++++++-- | 14 | src/lib/openjp2/tcd.c | 20 ++++++++++++++++++-- |
| 11 | 1 file changed, 18 insertions(+), 2 deletions(-) | 15 | 1 file changed, 18 insertions(+), 2 deletions(-) |