libcap: fix CVE-2023-2603 Integer Overflow in _libcap_strdup()

(From OE-Core rev: 92340bc3161259c962b5ed5f9d9055f5bd36a3ce) Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Vivek Kumbhar <vkumbhar@mvista.com> 2023-06-29 20:40:46 +0530
committer: Steve Sakoman <steve@sakoman.com> 2023-07-12 05:11:37 -1000
commit: 257c1fdc11dfb982a88be219c73aee4dc06e5ac5 (patch)
tree: eca1ea59689f25583510c0d281c7cfbbbe91d7d6 /meta/recipes-support/libcap/libcap_2.66.bb
parent: efa581c3ab0f951b3a0e2a33ebff6ee02f19cb20 (diff)
download: poky-257c1fdc11dfb982a88be219c73aee4dc06e5ac5.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-support/libcap/libcap_2.66.bb b/meta/recipes-support/libcap/libcap_2.66.bb
index d3189fb105..7534063b7d 100644
--- a/meta/recipes-support/libcap/libcap_2.66.bb
+++ b/meta/recipes-support/libcap/libcap_2.66.bb
@@ -17,6 +17,7 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/libs/security/linux-privs/${BPN}2/${BPN}-${
           file://0001-ensure-the-XATTR_NAME_CAPS-is-defined-when-it-is-use.patch \
           file://0002-tests-do-not-run-target-executables.patch \
           file://CVE-2023-2602.patch \
+           file://CVE-2023-2603.patch \
           "
 SRC_URI:append:class-nativesdk = " \
           file://0001-nativesdk-libcap-Raise-the-size-of-arrays-containing.patch \
author	Vivek Kumbhar <vkumbhar@mvista.com>	2023-06-29 20:40:46 +0530
committer	Steve Sakoman <steve@sakoman.com>	2023-07-12 05:11:37 -1000
commit	257c1fdc11dfb982a88be219c73aee4dc06e5ac5 (patch)
tree	eca1ea59689f25583510c0d281c7cfbbbe91d7d6 /meta/recipes-support/libcap/libcap_2.66.bb
parent	efa581c3ab0f951b3a0e2a33ebff6ee02f19cb20 (diff)
download	poky-257c1fdc11dfb982a88be219c73aee4dc06e5ac5.tar.gz

diff --git a/meta/recipes-support/libcap/libcap_2.66.bb b/meta/recipes-support/libcap/libcap_2.66.bb index d3189fb105..7534063b7d 100644 --- a/meta/recipes-support/libcap/libcap_2.66.bb +++ b/meta/recipes-support/libcap/libcap_2.66.bb
@@ -17,6 +17,7 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/libs/security/linux-privs/${BPN}2/${BPN}-${
17	file://0001-ensure-the-XATTR_NAME_CAPS-is-defined-when-it-is-use.patch \	17	file://0001-ensure-the-XATTR_NAME_CAPS-is-defined-when-it-is-use.patch \
18	file://0002-tests-do-not-run-target-executables.patch \	18	file://0002-tests-do-not-run-target-executables.patch \
19	file://CVE-2023-2602.patch \	19	file://CVE-2023-2602.patch \
		20	file://CVE-2023-2603.patch \
20	"	21	"
21	SRC_URI:append:class-nativesdk = " \	22	SRC_URI:append:class-nativesdk = " \
22	file://0001-nativesdk-libcap-Raise-the-size-of-arrays-containing.patch \	23	file://0001-nativesdk-libcap-Raise-the-size-of-arrays-containing.patch \