[OE-core] [PATCH 1/3] readline: Security Advisory - readline - CVE-2014-2524
Petter Mabäcker
petter at technux.se
Fri Oct 9 07:14:48 UTC 2015
2015-10-08 04:13 skrev Kang Kai:
> On 2015年10月06日 23:30, Petter
Mabäcker wrote:
>
>> 2015-10-06 16:08 skrev Burton, Ross:
>>
>>> On
6 October 2015 at 14:43, Petter Mabäcker <petter at technux.se> wrote:
>>>
>>>> Great. As you will notice also when formatted properly it will not
apply due to that readline63-001 and readline63-002 isn't applied so
'patchlevel' is incorrect. That makes me wondering what the patching
strategy is? In my opinion we should consider adding the official
readline-6.3 patches as well. Should I add a bug report for that or
leave it as is (depending on the strategy...)?
>>>
>>> Adding the rest
of the patches would have been a sensible thing to do. Right now, we're
frozen as we're about to release 2.0, but a bug or patches post-release
would be much appreciated.
>>>
>>> Ross
>>
>> I have created a defect
and assigned myself
(https://bugzilla.yoctoproject.org/show_bug.cgi?id=8451 [1]) and will
send something up when the normal integration is open again.
>>
>> BR
Petter
>
> Sorry for late reply that we had The National Day vacation.
I can help for this defect if you please.
It's OK, I can send something
up for this. See the discussion with Marko within the same thread about
a recommended way forward
(http://lists.openembedded.org/pipermail/openembedded-core/2015-October/111353.html).
If you have any requirements for the verification of the bug please
update the bug report with this info.
BR Petter
> --
> Regards,
>
Neil | Kai Kang
Petter Mabäcker
Technux
<petter at technux.se>
www.technux.se
Links:
------
[1]
https://bugzilla.yoctoproject.org/show_bug.cgi?id=8451
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openembedded.org/pipermail/openembedded-core/attachments/20151009/18d0eac9/attachment-0002.html>
More information about the Openembedded-core
mailing list