diff options
| author |   Yuanjie Huang <yuanjie.huang@windriver.com> | 2016-04-27 02:32:55 -0700 |
|---|---|---|
| committer |   Robert Yang <liezhi.yang@windriver.com> | 2016-05-10 19:59:39 -0700 |
| commit | 71b051f51a44dad1fdca7ca6b3552d0aebdc91d3 (patch) | |
| tree | 03d3a442d40f4ae32f80a596ea8e662fa21e57b7 /meta/recipes-core/glibc/glibc_2.22.bb | |
| parent | 69b49e8dc45cf60defba547d93e663df42c92127 (diff) | |
| download | openembedded-core-contrib-71b051f51a44dad1fdca7ca6b3552d0aebdc91d3.tar.gz | |
glibc: Fix CVE-2015-8778
CVE: CVE-2015-8778
Improve check against integer wraparound in hcreate_r [BZ #18240]
This is an integer overflow in hcreate and hcreate_r which can result in
an out-of-bound memory access. This could lead to application crashes
or, potentially, arbitrary code execution.
Upstream-Status: Backport [2.23]
(cherry-picked from commit bae7c7c7, 4bd228c8)
Signed-off-by: Yuanjie Huang <yuanjie.huang@windriver.com>
Diffstat (limited to 'meta/recipes-core/glibc/glibc_2.22.bb')
| -rw-r--r-- | meta/recipes-core/glibc/glibc_2.22.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-core/glibc/glibc_2.22.bb b/meta/recipes-core/glibc/glibc_2.22.bb index a13b7f94bb..7b25847392 100644 --- a/meta/recipes-core/glibc/glibc_2.22.bb +++ b/meta/recipes-core/glibc/glibc_2.22.bb @@ -47,6 +47,7 @@ SRC_URI = "${GLIBC_GIT_URI};branch=${SRCBRANCH};name=glibc \ file://CVE-2015-9761_2.patch \ file://CVE-2015-8776.patch \ file://CVE-2015-7547.patch \ + file://CVE-2015-8778.patch \ " SRC_URI += "\ |