diff options
author | Romain Forlot <romain.forlot@iot.bzh> | 2016-12-02 16:13:31 +0000 |
---|---|---|
committer | Jan-Simon Moeller <jsmoeller@linuxfoundation.org> | 2016-12-02 20:12:10 +0000 |
commit | 4d77bb6a6d8520a6eb8bf148efa06773af41c7d0 (patch) | |
tree | 436dceb9a65cd28a4cebd2f9b766084e3edcd2ec /meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend | |
parent | 233363d31f03550cd69a67fdd3e7107863aa3a86 (diff) |
Fix: CVE-2016-1238 recent perl doesn't include cwd
Upstream YP introduced
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?h=krogoth&id=529bbe2cc2cebeec0ee6cef27aba2d1aafe79d38
Thus this adds a follow-up fix for openssl.
Change-Id: Ifb55c3022596a6105662618f4cd08bd0165f5a6b
Signed-off-by: Romain Forlot <romain.forlot@iot.bzh>
Diffstat (limited to 'meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend')
-rw-r--r-- | meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend b/meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend new file mode 100644 index 000000000..31c5c2040 --- /dev/null +++ b/meta-agl/recipes-connectivity/openssl/openssl_1.0.2h.bbappend @@ -0,0 +1,7 @@ +# As fixed in debian package perl (5.22.2-3) [SECURITY] CVE-2016-1238 +# We have to tell perl to include cwd in @INC using PERL_USE_UNSAFE_INC +# Fixed in morty release. See commit : http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?id=ffdc23ab5311b651e27c9bda16da5ddd482249fa + +do_configure_prepend() { +${@'export PERL_USE_UNSAFE_INC=1' if (d.getVar("DISTRO_CODENAME", True) == "chinook") else ''} +} |