libxfont: Security Advisory - libxfont - CVE-2015-1802

bdfReadProperties: property count needs range check Avoid integer overflow or underflow when allocating memory arrays by multiplying the number of properties reported for a BDF font. (From OE-Core rev: 0ff9f2bf0e44a7b47a98234a12714c780825e286) Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Li Zhou <li.zhou@windriver.com> 2015-04-23 17:20:06 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2015-05-15 18:12:11 +0100
commit: ddc4889d7028d0388b1521d49ab1d3b8decba524 (patch)
tree: 627cfb9a4efecc2c69f01f740ce34afd6f169bea /meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb
parent: c944c1ee3f039979d93022bbbd76f61f57b1577f (diff)
download: openembedded-core-ddc4889d7028d0388b1521d49ab1d3b8decba524.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb b/meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb
index ef0bde29fb..4a3c9b7db7 100644
--- a/meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb
+++ b/meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb
@@ -18,5 +18,8 @@ XORG_PN = "libXfont"
 
 BBCLASSEXTEND = "native"
 
+SRC_URI += "file://0001-bdfReadProperties-property-count-needs-range-check-C.patch \
+           "
+
 SRC_URI[md5sum] = "664629bfa7cdf8b984155019fd395dcb"
 SRC_URI[sha256sum] = "3a3c52c4adf9352b2160f07ff0596af17ab14f91d6509564e606678a1261c25f"
author	Li Zhou <li.zhou@windriver.com>	2015-04-23 17:20:06 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2015-05-15 18:12:11 +0100
commit	ddc4889d7028d0388b1521d49ab1d3b8decba524 (patch)
tree	627cfb9a4efecc2c69f01f740ce34afd6f169bea /meta/recipes-graphics/xorg-lib/libxfont_1.5.0.bb
parent	c944c1ee3f039979d93022bbbd76f61f57b1577f (diff)
download	openembedded-core-ddc4889d7028d0388b1521d49ab1d3b8decba524.tar.gz