perl: fix CVE-2013-1667

From http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1667: "The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key." Patch taken from upstream git. Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Ross Burton <ross.burton@intel.com> 2013-04-29 15:41:43 +0100
committer: Ross Burton <ross.burton@intel.com> 2013-04-29 15:41:43 +0100
commit: ccc272a3f7bf240733dc3af1d8d7b870c55e1f5b (patch)
tree: 8367b3fd4774e318d4b8a74f352cd429ba9859b4 /meta/recipes-devtools/perl/perl_5.14.2.bb
parent: b585a50b7bd735c3092af9477af263c13c853d32 (diff)
download: openembedded-core-ccc272a3f7bf240733dc3af1d8d7b870c55e1f5b.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/perl/perl_5.14.2.bb b/meta/recipes-devtools/perl/perl_5.14.2.bb
index 5e17661507..dbfcf4cf1f 100644
--- a/meta/recipes-devtools/perl/perl_5.14.2.bb
+++ b/meta/recipes-devtools/perl/perl_5.14.2.bb
@@ -69,6 +69,7 @@ SRC_URI = "http://www.cpan.org/src/5.0/perl-${PV}.tar.gz \
 	file://perl-archlib-exp.patch \
 	file://perl-fix-CVE-2012-5195.patch \
 	file://cve-2012-6329.patch \
+	file://cve-2013-1667.patch \
 	\
         file://config.sh \
         file://config.sh-32 \
author	Ross Burton <ross.burton@intel.com>	2013-04-29 15:41:43 +0100
committer	Ross Burton <ross.burton@intel.com>	2013-04-29 15:41:43 +0100
commit	ccc272a3f7bf240733dc3af1d8d7b870c55e1f5b (patch)
tree	8367b3fd4774e318d4b8a74f352cd429ba9859b4 /meta/recipes-devtools/perl/perl_5.14.2.bb
parent	b585a50b7bd735c3092af9477af263c13c853d32 (diff)
download	openembedded-core-ccc272a3f7bf240733dc3af1d8d7b870c55e1f5b.tar.gz