musl: Security fix CVE-2016-8859

CVE-2016-8859: TRE & musl libc regex integer overflows in buffer size computations Affects musl <= 1.1.15 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Armin Kuster <akuster@mvista.com> 2016-10-19 18:00:46 -0700
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-10-28 11:27:33 +0100
commit: ac82bd95ec62a6af8286289889a9d36fa5f58005 (patch)
tree: 67796ec7d1f0c8494f691d058ea3356b5ba610c1 /meta/recipes-core/musl/musl_git.bb
parent: 75306fb99ce720070c02ea594d839c3e915d8f09 (diff)
download: openembedded-core-contrib-ac82bd95ec62a6af8286289889a9d36fa5f58005.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/musl/musl_git.bb b/meta/recipes-core/musl/musl_git.bb
index c07101b748..1ee56b6434 100644
--- a/meta/recipes-core/musl/musl_git.bb
+++ b/meta/recipes-core/musl/musl_git.bb
@@ -11,6 +11,7 @@ PV = "1.1.15+git${SRCPV}"
 
 SRC_URI = "git://git.musl-libc.org/musl \
            file://0001-Make-dynamic-linker-a-relative-symlink-to-libc.patch \
+           file://CVE-2016-8859.patch \
           "
 
 S = "${WORKDIR}/git"
author	Armin Kuster <akuster@mvista.com>	2016-10-19 18:00:46 -0700
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-10-28 11:27:33 +0100
commit	ac82bd95ec62a6af8286289889a9d36fa5f58005 (patch)
tree	67796ec7d1f0c8494f691d058ea3356b5ba610c1 /meta/recipes-core/musl/musl_git.bb
parent	75306fb99ce720070c02ea594d839c3e915d8f09 (diff)
download	openembedded-core-contrib-ac82bd95ec62a6af8286289889a9d36fa5f58005.tar.gz