]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: abc9e4e) | patch
binutils: CVE-2017-12448
authorThiruvadi Rajaraman <trajaraman@mvista.com>
Wed, 30 Aug 2017 12:21:17 +0000 (17:51 +0530)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sun, 7 Jan 2018 17:09:43 +0000 (17:09 +0000)
commit996e7af41b48107bab5eca0ea26f507541382bd5
tree587f4ab230377cb51ddb92a6447505d3c52b79c5tree | snapshot
parentabc9e4eebafac084bee054954bd93288cd1d0a8ccommit | diff
binutils: CVE-2017-12448

Source: git://sourceware.org/git/binutils-gdb.git
MR: 73880
Type: Security Fix
Disposition: Backport from binutils-2_29-branch
ChangeID: 6ef7c8e941d7a1c069b29e4671178c0d02427e3f
Description:

Fix use-after-free error when parsing a corrupt nested archive.

PR 21787
* archive.c (bfd_generic_archive_p): If the bfd does not have the
  correct magic bytes at the start, set the error to wrong format
  and clear the format selector before returning NULL.

Affects: <= 2.29

Signed-off-by: Thiruvadi Rajaraman <trajaraman@mvista.com>
Reviewed-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/recipes-devtools/binutils/binutils-2.27.inc diff | blob | history
meta/recipes-devtools/binutils/binutils/CVE-2017-12448.patch [new file with mode: 0644] blob
Mirror of the official openembedded-core repository