glibc: CVE-2014-9402 endless loop in getaddr_r

The getnetbyname function in glibc 2.21 in earlier will enter an infinite loop if the DNS backend is activated in the system Name Service Switch configuration, and the DNS resolver receives a positive answer while processing the network name. Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Armin Kuster <akuster@mvista.com> 2015-01-21 12:43:11 -0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2015-01-28 21:22:23 +0000
commit: f03bf84c179f69ef4800ed92a4a9d9401d0e5966 (patch)
tree: 6882931cdebe19b7d0ed91980953921168a18949 /meta/recipes-core/glibc/glibc_2.20.bb
parent: ccb86249b2b29686303ed04aac74887f0fa490df (diff)
download: openembedded-core-contrib-f03bf84c179f69ef4800ed92a4a9d9401d0e5966.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.20.bb b/meta/recipes-core/glibc/glibc_2.20.bb
index f67fbfdf0d..8a8b296def 100644
--- a/meta/recipes-core/glibc/glibc_2.20.bb
+++ b/meta/recipes-core/glibc/glibc_2.20.bb
@@ -44,6 +44,7 @@ EGLIBCPATCHES = "\
 CVEPATCHES = "\
         file://CVE-2014-7817-wordexp-fails-to-honour-WRDE_NOCMD.patch \
         file://CVE-2012-3406-Stack-overflow-in-vfprintf-BZ-16617.patch \
+        file://CVE-2014-9402_endless-loop-in-getaddr_r.patch \
     "
 LIC_FILES_CHKSUM = "file://LICENSES;md5=e9a558e243b36d3209f380deb394b213 \
       file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
author	Armin Kuster <akuster@mvista.com>	2015-01-21 12:43:11 -0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2015-01-28 21:22:23 +0000
commit	f03bf84c179f69ef4800ed92a4a9d9401d0e5966 (patch)
tree	6882931cdebe19b7d0ed91980953921168a18949 /meta/recipes-core/glibc/glibc_2.20.bb
parent	ccb86249b2b29686303ed04aac74887f0fa490df (diff)
download	openembedded-core-contrib-f03bf84c179f69ef4800ed92a4a9d9401d0e5966.tar.gz