[OE-core] [PATCH] curl: actually apply latest CVE patches
Ross Burton
ross.burton at intel.com
Fri Nov 9 16:53:11 UTC 2018
Signed-off-by: Ross Burton <ross.burton at intel.com>
---
meta/recipes-support/curl/curl_7.61.0.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta/recipes-support/curl/curl_7.61.0.bb b/meta/recipes-support/curl/curl_7.61.0.bb
index 53cfc4a5186..56327a632b4 100644
--- a/meta/recipes-support/curl/curl_7.61.0.bb
+++ b/meta/recipes-support/curl/curl_7.61.0.bb
@@ -8,6 +8,9 @@ LIC_FILES_CHKSUM = "file://COPYING;md5=ef889a37a5a874490ac7ce116396f29a"
SRC_URI = "http://curl.haxx.se/download/curl-${PV}.tar.bz2 \
file://0001-replace-krb5-config-with-pkg-config.patch \
file://CVE-2018-14618.patch \
+ file://CVE-2018-16839.patch \
+ file://CVE-2018-16840.patch \
+ file://CVE-2018-16842.patch \
"
SRC_URI[md5sum] = "31d0a9f48dc796a7db351898a1e5058a"
--
2.11.0
More information about the Openembedded-core
mailing list