code.ossystems Code Review - openembedded-core.git/commit

author	Scott Murray <scott.murray@konsulko.com>
	Wed, 30 Dec 2020 22:44:18 +0000 (17:44 -0500)
committer	Anuj Mittal <anuj.mittal@intel.com>
	Thu, 7 Jan 2021 07:01:08 +0000 (15:01 +0800)
commit	b364688110ce8f4d2085319577f9e08a698d6564
tree	0763854923a21c6a6399f4b4402af7b662bdfe57	tree \| snapshot
parent	f8aa7314f98748ecb7a9abc6702e795ae50b97a6	commit \| diff

patch: fix CVE-2019-20633

* CVE detail: https://nvd.nist.gov/vuln/detail/CVE-2019-20633

* upstream tracking: https://savannah.gnu.org/bugs/index.php?56683

* Fixes potential for double free after incomplete fix for CVE-2018-6952
- src/pch.c (another_hunk): Avoid invalid memory access in context format
diffs.

Signed-off-by: Scott Murray <scott.murray@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit be71dd2cc16a4c0d244a76a748f08ca0d9bfeba0)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>

meta/recipes-devtools/patch/patch/CVE-2019-20633.patch	[new file with mode: 0644]	blob
meta/recipes-devtools/patch/patch_2.7.6.bb		diff \| blob \| history