diff options
author | Wenzong Fan <wenzong.fan@windriver.com> | 2016-09-12 04:55:16 -0400 |
---|---|---|
committer | Martin Jansa <Martin.Jansa@gmail.com> | 2016-09-15 10:22:49 +0200 |
commit | 2ed5ad2e40ea29b549c1d39aad70e2e4f7d57b28 (patch) | |
tree | a23fe60e6020c0c476757e79297a1d55231d1c7b /meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch | |
parent | dd0f1adc981a8517cfd0ab4395147316053278de (diff) | |
download | meta-openembedded-contrib-2ed5ad2e40ea29b549c1d39aad70e2e4f7d57b28.tar.gz |
krb5: upgrade to 1.13.6
* fix CVEs: CVE-2015-8629, CVE-2015-8630, CVE-2015-8631
* update LIC_FILES_CHKSUM, only Copyright changed in NOTICE file:
-Copyright (C) 1985-2015 by the Massachusetts Institute of Technology.
+Copyright (C) 1985-2016 by the Massachusetts Institute of Technology.
* remove useless functions: krb5_do_unpack(), do_unpack()
* remove patches that included by new release:
- 0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch
- Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch
- Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch
- Fix-build_principal-memory-bug-CVE-2015-2697.patch
- Fix-IAKERB-context-export-import-CVE-2015-2698.patch
- krb5-CVE-2016-3119.patch
- krb5-CVE-2016-3120.patch
Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Diffstat (limited to 'meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch')
-rw-r--r-- | meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch | 37 |
1 files changed, 0 insertions, 37 deletions
diff --git a/meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch b/meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch deleted file mode 100644 index c6731a9002..0000000000 --- a/meta-oe/recipes-connectivity/krb5/krb5/0001-Work-around-uninitialized-warning-in-cc_kcm.c.patch +++ /dev/null @@ -1,37 +0,0 @@ -From f1b681a44d28946e6d8fc0080f3efe94228d7dfe Mon Sep 17 00:00:00 2001 -From: Tom Yu <tlyu@mit.edu> -Date: Wed, 6 Jan 2016 15:24:16 -0500 -Subject: [PATCH] Work around uninitialized warning in cc_kcm.c - -Some versions of clang erroneously detect use of an uninitialized -variable reply_len in kcmio_call() when building on non-Mac platforms. -Initialize it to work around this warning. - -(cherry picked from commit 40b007c0d8e2a12c6f4205ac111dee731c9d970c) - -ticket: 8335 -version_fixed: 1.13.4 -tags: -pullup -status: resolved - -Upstream-Status: backport ---- - src/lib/krb5/ccache/cc_kcm.c | 2 +- - 1 file changed, 1 insertion(+), 1 deletion(-) - -diff --git a/src/lib/krb5/ccache/cc_kcm.c b/src/lib/krb5/ccache/cc_kcm.c -index b763ea4..6337b57 100644 ---- a/src/lib/krb5/ccache/cc_kcm.c -+++ b/src/lib/krb5/ccache/cc_kcm.c -@@ -377,7 +377,7 @@ static krb5_error_code - kcmio_call(krb5_context context, struct kcmio *io, struct kcmreq *req) - { - krb5_error_code ret; -- size_t reply_len; -+ size_t reply_len = 0; - - if (k5_buf_status(&req->reqbuf) != 0) - return ENOMEM; --- -2.8.2 - |