[OE-core] [PATCH v2] curl: Security Advisory - CVE-2014-3613 & CVE-2014-3620
Maxin B. John
maxin.john at enea.com
Thu Oct 2 14:13:15 UTC 2014
Hi Ross,
On Thu, Oct 02, 2014 at 02:54:05PM +0100, Burton, Ross wrote:
> On 1 October 2014 14:29, Maxin B. John <maxin.john at enea.com> wrote:
> > Details of vulnerabilities are available below:
> > CVE-2014-3613: http://curl.haxx.se/docs/adv_20140910A.html
> > CVE-2014-3620: http://curl.haxx.se/docs/adv_20140910B.html
> >
> > Signed-off-by: Maxin B. John <maxin.john at enea.com>
> > ---
>
> Still fails to apply the patches (different failure to before).
>
> ERROR: Command Error: exit status: 1 Output:
> Applying patch CVE-2014-3620.patch
> patching file lib/cookie.c
> patching file tests/data/test61
> Hunk #1 FAILED at 23.
> 1 out of 1 hunk FAILED -- rejects in file tests/data/test61
> Patch CVE-2014-3620.patch does not apply (enforce with -f)
> ERROR: Function failed: patch_do_patch
> ERROR: Logfile of failure stored in:
> /data/poky-master/tmp/work/corei7-64-poky-linux/curl/7.37.1-r0/temp/log.do_patch.18104
> ERROR: Task 6649
> (/home/ross/Yocto/poky/meta/recipes-support/curl/curl_7.37.1.bb,
> do_patch) failed with exit code '1'
Extremely sorry this time. I remember fixing this one and probably
sent a wrong version. Guess, I should take a vacation soon.
> Ross
Best Regards,
Maxin
More information about the Openembedded-core
mailing list