diff options
| author |   Steve Sakoman <steve@sakoman.com> | 2020-11-04 05:33:45 -1000 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2020-11-05 04:07:15 -1000 |
| commit | 0338c2eb099532eb3b9a9de038f6b1a757348513 (patch) | |
| tree | a219f7675a7cb6c2e77b2f68c67b51f0e383b6a6 /meta/recipes-support | |
| parent | 698c0cbf77ebce6b336f823f826aaece0cc9ca32 (diff) | |
| download | openembedded-core-contrib-0338c2eb099532eb3b9a9de038f6b1a757348513.tar.gz | |
sqlite3: fix CVE-2020-13434
CVE: CVE-2020-13434
Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13434
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta/recipes-support')
| -rw-r--r-- | meta/recipes-support/sqlite/files/CVE-2020-13434.patch | 48 | ||||
| -rw-r--r-- | meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 1 |
2 files changed, 49 insertions, 0 deletions
diff --git a/meta/recipes-support/sqlite/files/CVE-2020-13434.patch b/meta/recipes-support/sqlite/files/CVE-2020-13434.patch new file mode 100644 index 0000000000..40c5e6f2ce --- /dev/null +++ b/meta/recipes-support/sqlite/files/CVE-2020-13434.patch @@ -0,0 +1,48 @@ +From dd6c33d372f3b83f4fe57904c2bd5ebba5c38018 Mon Sep 17 00:00:00 2001 +From: drh <drh@noemail.net> +Date: Sat, 23 May 2020 19:58:07 +0000 +Subject: [PATCH] Limit the "precision" of floating-point to text conversions + in the printf() function to 100,000,000. Fix for ticket [23439ea582241138]. + +FossilOrigin-Name: d08d3405878d394e08e5d3af281246edfbd81ca74cc8d16458808591512fb93d + +Upstream-Status: Backport +CVE: CVE-2020-13434 + +Reference to upstream patch: +https://github.com/sqlite/sqlite/commit/dd6c33d372f3b83f4fe57904c2bd5ebba5c38018 + +Patch converted to amalgamation format + +Signed-off-by: Steve Sakoman <steve@sakoman.com> +--- +diff --git a/sqlite3.c b/sqlite3.c +index 55dc686..5ff2c14 100644 +--- a/sqlite3.c ++++ b/sqlite3.c +@@ -28147,6 +28147,13 @@ static char *printfTempBuf(sqlite3_str *pAccum, sqlite3_int64 n){ + #endif + #define etBUFSIZE SQLITE_PRINT_BUF_SIZE /* Size of the output buffer */ + ++/* ++** Hard limit on the precision of floating-point conversions. ++*/ ++#ifndef SQLITE_PRINTF_PRECISION_LIMIT ++# define SQLITE_FP_PRECISION_LIMIT 100000000 ++#endif ++ + /* + ** Render a string given by "fmt" into the StrAccum object. + */ +@@ -28468,6 +28475,11 @@ SQLITE_API void sqlite3_str_vappendf( + length = 0; + #else + if( precision<0 ) precision = 6; /* Set default precision */ ++#ifdef SQLITE_FP_PRECISION_LIMIT ++ if( precision>SQLITE_FP_PRECISION_LIMIT ){ ++ precision = SQLITE_FP_PRECISION_LIMIT; ++ } ++#endif + if( realvalue<0.0 ){ + realvalue = -realvalue; + prefix = '-'; diff --git a/meta/recipes-support/sqlite/sqlite3_3.31.1.bb b/meta/recipes-support/sqlite/sqlite3_3.31.1.bb index e5071b48bb..c8225fff15 100644 --- a/meta/recipes-support/sqlite/sqlite3_3.31.1.bb +++ b/meta/recipes-support/sqlite/sqlite3_3.31.1.bb @@ -8,6 +8,7 @@ SRC_URI = "http://www.sqlite.org/2020/sqlite-autoconf-${SQLITE_PV}.tar.gz \ file://CVE-2020-11656.patch \ file://CVE-2020-11655.patch \ file://CVE-2020-15358.patch \ + file://CVE-2020-13434.patch \ " SRC_URI[md5sum] = "2d0a553534c521504e3ac3ad3b90f125" SRC_URI[sha256sum] = "62284efebc05a76f909c580ffa5c008a7d22a1287285d68b7825a2b6b51949ae" |