diff options
| author | Vrushti Dabhi <vrushti.dabhi@einfochips.com> | 2024-09-04 12:04:09 +0530 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2024-09-07 05:38:17 -0700 |
| commit | bf6aca4b291bd6301c150d1d621bb56ff571c451 (patch) | |
| tree | 22092ad3448e973da415a8e989fe3c9701964b3e | |
| parent | a952dec3e479f50a645faaf7258f5322c1767e42 (diff) | |
| download | poky-bf6aca4b291bd6301c150d1d621bb56ff571c451.tar.gz | |
sqlite3: CVE-ID correction for CVE-2023-7104
- The commit [https://sqlite.org/src/info/0e4e7a05c4204b47]
("Fix a buffer overread in the sessions extension that could occur when processing a corrupt changeset.")
fixes CVE-2023-7104 instead of CVE-2022-46908.
- Hence, corrected the CVE-ID in CVE-2023-7104.patch.
- Reference: https://nvd.nist.gov/vuln/detail/CVE-2023-7104
(From OE-Core rev: 9d7f21f3d0ae24d0005076396e9a929bb32d648e)
Signed-off-by: Vrushti Dabhi <vrushti.dabhi@einfochips.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-support/sqlite/files/CVE-2023-7104.patch | 10 | ||||
| -rw-r--r-- | meta/recipes-support/sqlite/sqlite3_3.38.5.bb | 2 |
2 files changed, 7 insertions, 5 deletions
diff --git a/meta/recipes-support/sqlite/files/CVE-2023-7104.patch b/meta/recipes-support/sqlite/files/CVE-2023-7104.patch index 25c6ba017c..5f3681070e 100644 --- a/meta/recipes-support/sqlite/files/CVE-2023-7104.patch +++ b/meta/recipes-support/sqlite/files/CVE-2023-7104.patch | |||
| @@ -1,18 +1,20 @@ | |||
| 1 | From 09f1652f36c5c4e8a6a640ce887f9ea0f48a7958 Mon Sep 17 00:00:00 2001 | 1 | From f388a0c44d2abdbd582686e511fef36c1b96ae43 Mon Sep 17 00:00:00 2001 |
| 2 | From: dan <Dan Kennedy> | 2 | From: dan <Dan Kennedy> |
| 3 | Date: Thu, 7 Sep 2023 13:53:09 +0000 | 3 | Date: Thu, 7 Sep 2023 13:53:09 +0000 |
| 4 | Subject: [PATCH] Fix a buffer overread in the sessions extension that could | 4 | Subject: [PATCH] Fix a buffer overread in the sessions extension that could |
| 5 | occur when processing a corrupt changeset. | 5 | occur when processing a corrupt changeset. |
| 6 | 6 | ||
| 7 | Upstream-Status: Backport [https://sqlite.org/src/info/0e4e7a05c4204b47] | 7 | Upstream-Status: Backport [https://sqlite.org/src/info/0e4e7a05c4204b47] |
| 8 | CVE: CVE-2022-46908 | 8 | CVE: CVE-2023-7104 |
| 9 | |||
| 9 | Signed-off-by: Peter Marko <peter.marko@siemens.com> | 10 | Signed-off-by: Peter Marko <peter.marko@siemens.com> |
| 11 | Signed-off-by: Vrushti Dabhi <vrushti.dabhi@einfochips.com> | ||
| 10 | --- | 12 | --- |
| 11 | sqlite3.c | 18 +++++++++++------- | 13 | sqlite3.c | 18 +++++++++++------- |
| 12 | 1 file changed, 11 insertions(+), 7 deletions(-) | 14 | 1 file changed, 11 insertions(+), 7 deletions(-) |
| 13 | 15 | ||
| 14 | diff --git a/ext/session/sqlite3session.c b/ext/session/sqlite3session.c | 16 | diff --git a/sqlite3.c b/sqlite3.c |
| 15 | index 9f862f2465..0491549231 100644 | 17 | index a16db27..0b979f7 100644 |
| 16 | --- a/sqlite3.c | 18 | --- a/sqlite3.c |
| 17 | +++ b/sqlite3.c | 19 | +++ b/sqlite3.c |
| 18 | @@ -213482,15 +213482,19 @@ static int sessionReadRecord( | 20 | @@ -213482,15 +213482,19 @@ static int sessionReadRecord( |
diff --git a/meta/recipes-support/sqlite/sqlite3_3.38.5.bb b/meta/recipes-support/sqlite/sqlite3_3.38.5.bb index cece207eae..b3d5029365 100644 --- a/meta/recipes-support/sqlite/sqlite3_3.38.5.bb +++ b/meta/recipes-support/sqlite/sqlite3_3.38.5.bb | |||
| @@ -8,7 +8,7 @@ SRC_URI = "http://www.sqlite.org/2022/sqlite-autoconf-${SQLITE_PV}.tar.gz \ | |||
| 8 | file://CVE-2022-46908.patch \ | 8 | file://CVE-2022-46908.patch \ |
| 9 | file://CVE-2023-36191.patch \ | 9 | file://CVE-2023-36191.patch \ |
| 10 | file://CVE-2023-7104.patch \ | 10 | file://CVE-2023-7104.patch \ |
| 11 | " | 11 | " |
| 12 | SRC_URI[sha256sum] = "5af07de982ba658fd91a03170c945f99c971f6955bc79df3266544373e39869c" | 12 | SRC_URI[sha256sum] = "5af07de982ba658fd91a03170c945f99c971f6955bc79df3266544373e39869c" |
| 13 | 13 | ||
| 14 | # -19242 is only an issue in specific development branch commits | 14 | # -19242 is only an issue in specific development branch commits |