[OE-core] [PATCH 0/6][dora] Fix various CVE
Mark Hatle
mark.hatle at windriver.com
Thu Dec 5 23:01:15 UTC 2013
Each of the patches in this set fix various CVE items. They apply to dora,
it has not yet been checked if they apply to master as well.
The following changes since commit c303f5ecf7cda1c3b8bb776a6800946c0487cd93:
Revert "utils.bbclass: Fix override ordering for FILESPATH" (2013-12-03 12:55:47 +0000)
are available in the git repository at:
git://git.yoctoproject.org/poky-contrib mhatle/dora-CVE
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=mhatle/dora-CVE
Baogen Shang (2):
libtiff: CVE-2013-4232
libtiff: CVE-2013-4243
Li Wang (1):
xinetd: CVE-2013-4342
Ming Liu (1):
libtiff: fix CVE-2013-1960
Yue Tao (2):
acpid: CVE-2011-1159
icu: CVE-2013-2924
meta/recipes-bsp/acpid/acpid.inc | 3 +-
.../acpid/acpid/set_socket_noblock.patch | 10 ++
.../xinetd/xinetd/xinetd-CVE-2013-4342.patch | 32 +++++
meta/recipes-extended/xinetd/xinetd_2.3.15.bb | 1 +
.../libtiff/files/libtiff-CVE-2013-1960.patch | 151 +++++++++++++++++++++
.../libtiff/files/libtiff-CVE-2013-4232.patch | 15 ++
.../libtiff/files/libtiff-CVE-2013-4243.patch | 40 ++++++
meta/recipes-multimedia/libtiff/tiff_4.0.3.bb | 5 +-
...fer_length_check_to_UTF_16_or_32_detector.patch | 33 +++++
meta/recipes-support/icu/icu_51.2.bb | 1 +
10 files changed, 289 insertions(+), 2 deletions(-)
create mode 100644 meta/recipes-bsp/acpid/acpid/set_socket_noblock.patch
create mode 100644 meta/recipes-extended/xinetd/xinetd/xinetd-CVE-2013-4342.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-1960.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4232.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4243.patch
create mode 100644 meta/recipes-support/icu/icu-51.2/add_buffer_length_check_to_UTF_16_or_32_detector.patch
--
1.8.1.2.545.g2f19ada
More information about the Openembedded-core
mailing list