unzip: actually apply CVE-2018-18384

author Ross Burton <ross.burton@intel.com>

Fri, 9 Nov 2018 16:28:36 +0000 (16:28 +0000)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Fri, 9 Nov 2018 17:46:10 +0000 (17:46 +0000)
author Ross Burton <ross.burton@intel.com>
Fri, 9 Nov 2018 16:28:36 +0000 (16:28 +0000)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Fri, 9 Nov 2018 17:46:10 +0000 (17:46 +0000)
diff --git a/meta/recipes-extended/unzip/unzip_6.0.bb b/meta/recipes-extended/unzip/unzip_6.0.bb

index b9d87dd6396b2090f90dca2fb7931de3b4803fa8..daba7227223acce73b1ead571b7abe1496ebde02 100644 (file)
--- a/meta/recipes-extended/unzip/unzip_6.0.bb
+++ b/meta/recipes-extended/unzip/unzip_6.0.bb
@@ -21,6 +21,7 @@ SRC_URI = "${SOURCEFORGE_MIRROR}/infozip/UnZip%206.x%20%28latest%29/UnZip%206.0/
         file://19-cve-2016-9844-zipinfo-buffer-overflow.patch \
         file://symlink.patch \
         file://0001-unzip-fix-CVE-2018-1000035.patch \
+       file://CVE-2018-18384.patch \
  "
  UPSTREAM_VERSION_UNKNOWN = "1"
author	Ross Burton <ross.burton@intel.com>
	Fri, 9 Nov 2018 16:28:36 +0000 (16:28 +0000)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Fri, 9 Nov 2018 17:46:10 +0000 (17:46 +0000)