diff options
author | Zhixiong Chi <Zhixiong.Chi@windriver.com> | 2015-12-24 17:29:59 +0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-01-07 13:40:03 +0000 |
commit | c89c5383e304a52b604a3672ac93fd88b5eb8b41 (patch) | |
tree | 24b875b2723ec1e79fcc4198513dcb522e7fa1f1 /meta/recipes-core/expat/expat.inc | |
parent | a71bfa1e75f7b963a91ee03db169af60372987f3 (diff) | |
download | openembedded-core-contrib-c89c5383e304a52b604a3672ac93fd88b5eb8b41.tar.gz |
expat: CVE-2015-1283
Add CVE-2015-1283 patch for fixing integer overflow bug in expat.
Details are at below link:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283
Patch comes from:
https://hg.mozilla.org/releases/mozilla-esr31/rev/2f3e78643f5c
https://codereview.chromium.org/1224303003
Signed-off-by: Zhixiong Chi <Zhixiong.Chi@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Diffstat (limited to 'meta/recipes-core/expat/expat.inc')
-rw-r--r-- | meta/recipes-core/expat/expat.inc | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-core/expat/expat.inc b/meta/recipes-core/expat/expat.inc index 6dfafe94d2..4bd60a2a6d 100644 --- a/meta/recipes-core/expat/expat.inc +++ b/meta/recipes-core/expat/expat.inc @@ -5,7 +5,9 @@ SECTION = "libs" LICENSE = "MIT" SRC_URI = "${SOURCEFORGE_MIRROR}/expat/expat-${PV}.tar.gz \ - file://autotools.patch" + file://autotools.patch \ + file://expat-CVE-2015-1283.patch \ + " inherit autotools lib_package gzipnative |