libxslt: Fix CVE-2017-5029

Backport upstream patch to fix CVE-2017-5029. Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Fan Xin <fan.xin@jp.fujitsu.com> 2017-05-26 11:39:06 +0900
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2017-05-30 10:14:32 +0100
commit: 5266e74c990df1cf965d162d9695eb5a698883ae (patch)
tree: f79f96b6b5b31fb2be0d37a1b84a659d785964f6 /meta/recipes-support/libxslt/libxslt_1.1.29.bb
parent: 08e366a386caab547e0dbcad2d4ee08f44814262 (diff)
download: openembedded-core-contrib-5266e74c990df1cf965d162d9695eb5a698883ae.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-support/libxslt/libxslt_1.1.29.bb b/meta/recipes-support/libxslt/libxslt_1.1.29.bb
index 2946a745e9..d27c706602 100644
--- a/meta/recipes-support/libxslt/libxslt_1.1.29.bb
+++ b/meta/recipes-support/libxslt/libxslt_1.1.29.bb
@@ -12,6 +12,7 @@ SRC_URI = "ftp://xmlsoft.org/libxslt/libxslt-${PV}.tar.gz \
            file://pkgconfig_fix.patch \
            file://0001-Use-pkg-config-to-find-gcrypt-and-libxml2.patch \
            file://0001-Link-libraries-with-libm.patch \
+           file://0001-Check-for-integer-overflow-in-xsltAddTextString.patch \
            "
 
 SRC_URI[md5sum] = "a129d3c44c022de3b9dcf6d6f288d72e"
author	Fan Xin <fan.xin@jp.fujitsu.com>	2017-05-26 11:39:06 +0900
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-05-30 10:14:32 +0100
commit	5266e74c990df1cf965d162d9695eb5a698883ae (patch)
tree	f79f96b6b5b31fb2be0d37a1b84a659d785964f6 /meta/recipes-support/libxslt/libxslt_1.1.29.bb
parent	08e366a386caab547e0dbcad2d4ee08f44814262 (diff)
download	openembedded-core-contrib-5266e74c990df1cf965d162d9695eb5a698883ae.tar.gz