glibc: Security fix CVE-2017-15670

The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the ~ operator followed by a long string. Affects: glibc < 2.27 v2] capitlize "signed-off-by" in patch (From OE-Core rev: a29cb640e3c0ca77ea232b89b89900cb55fa727c) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Armin Kuster <akuster@mvista.com> 2017-11-22 20:11:31 -0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2018-01-25 11:36:25 +0000
commit: 1c27271cddf337755bfcd27e3c2c05c71372cd7f (patch)
tree: b0cbfd78242d02e2922edf9449eeefa2fdeb2147 /meta/recipes-core/glibc/glibc_2.26.bb
parent: a03c452917842b15451ad7098c1216eaec09cd2b (diff)
download: poky-1c27271cddf337755bfcd27e3c2c05c71372cd7f.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.26.bb b/meta/recipes-core/glibc/glibc_2.26.bb
index 135ec4fb16..ed4ea4f624 100644
--- a/meta/recipes-core/glibc/glibc_2.26.bb
+++ b/meta/recipes-core/glibc/glibc_2.26.bb
@@ -43,6 +43,7 @@ SRC_URI = "${GLIBC_GIT_URI};branch=${SRCBRANCH};name=glibc \
           file://0026-assert-Suppress-pedantic-warning-caused-by-statement.patch \
           file://0027-glibc-reset-dl-load-write-lock-after-forking.patch \
           file://0028-Bug-4578-add-ld.so-lock-while-fork.patch \
+           file://CVE-2017-15670.patch \
 "
 NATIVESDKFIXES ?= ""
author	Armin Kuster <akuster@mvista.com>	2017-11-22 20:11:31 -0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2018-01-25 11:36:25 +0000
commit	1c27271cddf337755bfcd27e3c2c05c71372cd7f (patch)
tree	b0cbfd78242d02e2922edf9449eeefa2fdeb2147 /meta/recipes-core/glibc/glibc_2.26.bb
parent	a03c452917842b15451ad7098c1216eaec09cd2b (diff)
download	poky-1c27271cddf337755bfcd27e3c2c05c71372cd7f.tar.gz

diff --git a/meta/recipes-core/glibc/glibc_2.26.bb b/meta/recipes-core/glibc/glibc_2.26.bb index 135ec4fb16..ed4ea4f624 100644 --- a/meta/recipes-core/glibc/glibc_2.26.bb +++ b/meta/recipes-core/glibc/glibc_2.26.bb
@@ -43,6 +43,7 @@ SRC_URI = "${GLIBC_GIT_URI};branch=${SRCBRANCH};name=glibc \
43	file://0026-assert-Suppress-pedantic-warning-caused-by-statement.patch \	43	file://0026-assert-Suppress-pedantic-warning-caused-by-statement.patch \
44	file://0027-glibc-reset-dl-load-write-lock-after-forking.patch \	44	file://0027-glibc-reset-dl-load-write-lock-after-forking.patch \
45	file://0028-Bug-4578-add-ld.so-lock-while-fork.patch \	45	file://0028-Bug-4578-add-ld.so-lock-while-fork.patch \
		46	file://CVE-2017-15670.patch \
46	"	47	"
47		48
48	NATIVESDKFIXES ?= ""	49	NATIVESDKFIXES ?= ""