diff options
| author |   Zhixiong Chi <zhixiong.chi@windriver.com> | 2018-10-16 00:55:04 -0700 |
|---|---|---|
| committer |   Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-10-16 20:25:37 +0100 |
| commit | 2683d8287d6878868d3aa15ce6e6a80ce28d8737 (patch) | |
| tree | 74a4d060601e3f2b7d288e9e6f695a912c537443 /meta/recipes-devtools/binutils/binutils-2.31.inc | |
| parent | e0cc1dc6f1c14babe29a29a7211dc1c69d782b95 (diff) | |
| download | openembedded-core-contrib-2683d8287d6878868d3aa15ce6e6a80ce28d8737.tar.gz | |
binutils: fix three CVE issues
Backport the CVE patches from the upstream:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;
h=30838132997e6a3cfe3ec11c58b32b22f6f6b102
h=cf93e9c2cf8f8b2566f8fc86e961592b51b5980d
[BZ 23686] https://sourceware.org/bugzilla/show_bug.cgi?id=23686
[BZ 23685] https://sourceware.org/bugzilla/show_bug.cgi?id=23685
The one is for CVE-2018-17358 and CVE-2018-17359, and the another
is for CVE-2018-17360.
Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/binutils/binutils-2.31.inc')
| -rw-r--r-- | meta/recipes-devtools/binutils/binutils-2.31.inc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-devtools/binutils/binutils-2.31.inc b/meta/recipes-devtools/binutils/binutils-2.31.inc index 76add0fe4b..27a643d765 100644 --- a/meta/recipes-devtools/binutils/binutils-2.31.inc +++ b/meta/recipes-devtools/binutils/binutils-2.31.inc @@ -41,6 +41,8 @@ SRC_URI = "\ file://0019-Improved-robustness.-Return-FALSE-in-case-of-NULL-po.patch \ file://0020-Make-sure-global-symbol-is-not-an-indirect-or-warnin.patch \ file://0021-PLT-information-was-still-being-generated-when-symbo.patch \ + file://CVE-2018-17358.patch \ + file://CVE-2018-17360.patch \ " S = "${WORKDIR}/git" |