expat: CVE-2015-1283

Add CVE-2015-1283 patch for fixing integer overflow bug in expat. Details are at below link: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283 Patch comes from: https://hg.mozilla.org/releases/mozilla-esr31/rev/2f3e78643f5c https://codereview.chromium.org/1224303003 Signed-off-by: Zhixiong Chi <Zhixiong.Chi@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Zhixiong Chi <Zhixiong.Chi@windriver.com> 2015-12-24 17:29:59 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-01-07 13:40:03 +0000
commit: c89c5383e304a52b604a3672ac93fd88b5eb8b41 (patch)
tree: 24b875b2723ec1e79fcc4198513dcb522e7fa1f1 /meta/recipes-core/expat/expat.inc
parent: a71bfa1e75f7b963a91ee03db169af60372987f3 (diff)
download: openembedded-core-contrib-c89c5383e304a52b604a3672ac93fd88b5eb8b41.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-core/expat/expat.inc b/meta/recipes-core/expat/expat.inc
index 6dfafe94d2..4bd60a2a6d 100644
--- a/meta/recipes-core/expat/expat.inc
+++ b/meta/recipes-core/expat/expat.inc
@@ -5,7 +5,9 @@ SECTION = "libs"
 LICENSE = "MIT"
 
 SRC_URI = "${SOURCEFORGE_MIRROR}/expat/expat-${PV}.tar.gz \
-           file://autotools.patch"
+           file://autotools.patch \
+           file://expat-CVE-2015-1283.patch \
+	  "
 
 inherit autotools lib_package gzipnative
author	Zhixiong Chi <Zhixiong.Chi@windriver.com>	2015-12-24 17:29:59 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-01-07 13:40:03 +0000
commit	c89c5383e304a52b604a3672ac93fd88b5eb8b41 (patch)
tree	24b875b2723ec1e79fcc4198513dcb522e7fa1f1 /meta/recipes-core/expat/expat.inc
parent	a71bfa1e75f7b963a91ee03db169af60372987f3 (diff)
download	openembedded-core-contrib-c89c5383e304a52b604a3672ac93fd88b5eb8b41.tar.gz