curl: Security Advisory - curl - CVE-2017-1000254

Porting patch from <https://github.com/curl/curl/commit/ 5ff2c5ff25750aba1a8f64fbcad8e5b891512584> to solve CVE-2017-1000254. Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Li Zhou <li.zhou@windriver.com> 2017-10-23 15:44:53 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2017-11-05 13:54:44 +0000
commit: 08f8d5db06647b94f96d655100c358047682dd2f (patch)
tree: a2b6338dee850f0ff191a2f444869d9c3a43b68d /meta/recipes-support/curl/curl_7.54.1.bb
parent: 44676c90863c3864182c088ca51bec3bdc8dce29 (diff)
download: openembedded-core-08f8d5db06647b94f96d655100c358047682dd2f.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-support/curl/curl_7.54.1.bb b/meta/recipes-support/curl/curl_7.54.1.bb
index cf230ed0d4..9870657ca4 100644
--- a/meta/recipes-support/curl/curl_7.54.1.bb
+++ b/meta/recipes-support/curl/curl_7.54.1.bb
@@ -10,6 +10,7 @@ SRC_URI = "http://curl.haxx.se/download/curl-${PV}.tar.bz2 \
            file://CVE-2017-1000099.patch \
            file://CVE-2017-1000100.patch \
            file://CVE-2017-1000101.patch \
+           file://CVE-2017-1000254.patch \
 "
 
 # curl likes to set -g0 in CFLAGS, so we stop it
author	Li Zhou <li.zhou@windriver.com>	2017-10-23 15:44:53 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-11-05 13:54:44 +0000
commit	08f8d5db06647b94f96d655100c358047682dd2f (patch)
tree	a2b6338dee850f0ff191a2f444869d9c3a43b68d /meta/recipes-support/curl/curl_7.54.1.bb
parent	44676c90863c3864182c088ca51bec3bdc8dce29 (diff)
download	openembedded-core-08f8d5db06647b94f96d655100c358047682dd2f.tar.gz