2 files changed, 30 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch b/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch
new file mode 100644
index 0000000000..b6b08127a8
--- /dev/null
+++ b/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch
@@ -0,0 +1,29 @@
+From 305df050d02aea8532f7625d6642685aa530f9b0 Mon Sep 17 00:00:00 2001
+From: Ivaylo Dimitrov <ivo.g.dimitrov.75@gmail.com>
+Date: Tue, 3 Dec 2024 21:43:51 +0200
+Subject: [PATCH] Fix CVE-2024-7547
+CVE: CVE-2024-7547
+Upstream-Status: Backport [https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=305df050d02aea8532f7625d6642685aa530f9b0]
+Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
+---
+ src/smsutil.c | 3 +++
+ 1 file changed, 3 insertions(+)
+diff --git a/src/smsutil.c b/src/smsutil.c
+index e073a06..f8ff428 100644
+--- a/src/smsutil.c
+++ b/src/smsutil.c
+@@ -1475,6 +1475,9 @@ static gboolean decode_command(const unsigned char *pdu, int len,
+        if ((len - offset) < out->command.cdl)
+                return FALSE;
+       if (out->command.cdl > sizeof(out->command.cd))
+               return FALSE;
+
+        memcpy(out->command.cd, pdu + offset, out->command.cdl);
+        return TRUE;
+--
+2.40.0
diff --git a/meta/recipes-connectivity/ofono/ofono_1.34.bb b/meta/recipes-connectivity/ofono/ofono_1.34.bb
index 0c1e0ea6f8..8205ea683d 100644
--- a/meta/recipes-connectivity/ofono/ofono_1.34.bb
+++ b/meta/recipes-connectivity/ofono/ofono_1.34.bb
@@ -23,6 +23,7 @@ SRC_URI = "\
    file://CVE-2024-7544.patch \
    file://CVE-2024-7545.patch \
    file://CVE-2024-7546.patch \
+    file://CVE-2024-7547.patch \
 "
 SRC_URI[sha256sum] = "c0b96d3013447ec2bcb74579bef90e4e59c68dbfa4b9c6fbce5d12401a43aac7"

diff --git a/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch b/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch new file mode 100644 index 0000000000..b6b08127a8 --- /dev/null +++ b/meta/recipes-connectivity/ofono/ofono/CVE-2024-7547.patch
@@ -0,0 +1,29 @@
		1	From 305df050d02aea8532f7625d6642685aa530f9b0 Mon Sep 17 00:00:00 2001
		2	From: Ivaylo Dimitrov <ivo.g.dimitrov.75@gmail.com>
		3	Date: Tue, 3 Dec 2024 21:43:51 +0200
		4	Subject: [PATCH] Fix CVE-2024-7547
		5
		6	CVE: CVE-2024-7547
		7	Upstream-Status: Backport [https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=305df050d02aea8532f7625d6642685aa530f9b0]
		8
		9	Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
		10	---
		11	src/smsutil.c \| 3 +++
		12	1 file changed, 3 insertions(+)
		13
		14	diff --git a/src/smsutil.c b/src/smsutil.c
		15	index e073a06..f8ff428 100644
		16	--- a/src/smsutil.c
		17	+++ b/src/smsutil.c
		18	@@ -1475,6 +1475,9 @@ static gboolean decode_command(const unsigned char *pdu, int len,
		19	if ((len - offset) < out->command.cdl)
		20	return FALSE;
		21
		22	+ if (out->command.cdl > sizeof(out->command.cd))
		23	+ return FALSE;
		24	+
		25	memcpy(out->command.cd, pdu + offset, out->command.cdl);
		26
		27	return TRUE;
		28	--
		29	2.40.0


diff --git a/meta/recipes-connectivity/ofono/ofono_1.34.bb b/meta/recipes-connectivity/ofono/ofono_1.34.bb index 0c1e0ea6f8..8205ea683d 100644 --- a/meta/recipes-connectivity/ofono/ofono_1.34.bb +++ b/meta/recipes-connectivity/ofono/ofono_1.34.bb
@@ -23,6 +23,7 @@ SRC_URI = "\
23	file://CVE-2024-7544.patch \	23	file://CVE-2024-7544.patch \
24	file://CVE-2024-7545.patch \	24	file://CVE-2024-7545.patch \
25	file://CVE-2024-7546.patch \	25	file://CVE-2024-7546.patch \
		26	file://CVE-2024-7547.patch \
26	"	27	"
27	SRC_URI[sha256sum] = "c0b96d3013447ec2bcb74579bef90e4e59c68dbfa4b9c6fbce5d12401a43aac7"	28	SRC_URI[sha256sum] = "c0b96d3013447ec2bcb74579bef90e4e59c68dbfa4b9c6fbce5d12401a43aac7"
28		29