]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 3eb5955) | patch
cpio: fix crash when appending to archives
authorRoss Burton <ross.burton@intel.com>
Thu, 29 Nov 2018 11:42:14 +0000 (11:42 +0000)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Mon, 25 Feb 2019 22:13:07 +0000 (22:13 +0000)
commitc0a3874799224c9ae0d6d7dc4d0a0acf364ccdab
treeec48ffaa6e6854a6ec1891a28854528de65440d3tree | snapshot
parent3eb59559ecd2e93fb590a330b47de1db0750fc0bcommit | diff
cpio: fix crash when appending to archives

The upstream fix for CVE-2016-2037 introduced a read from uninitialized memory
bug when appending to an existing archive, which is an operation we perform when
building an image.

(From OE-Core rev: 046e3e1fca925febf47b3fdd5d4e9ee2e1fad868)

(From OE-Core rev: 2ff6ab2e2944c6a53523b4b1611e1d22f6393500)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/recipes-extended/cpio/cpio-2.12/0001-Fix-segfault-with-append.patch [new file with mode: 0644] blob
meta/recipes-extended/cpio/cpio_2.12.bb diff | blob | history
Mirror of the official openembedded-core repository