From 377b4d835cd4924efb4cd905eed642497960a239 Mon Sep 17 00:00:00 2001
From: Jan-Simon Möller <jsmoeller@linuxfoundation.org>
Date: Wed, 28 Jun 2017 22:01:03 +0200
Subject: Fix for CVE-2017-1000366 in glibc
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This changeset fixes CVE-2017-1000366 by using the latest glibc
revision from the 2.24 glibc git as of today which includes the needed fix.
One patch file had to be adapted and overlayed with our custom version
(patching just conflicts on ChangeLog, no source file affected).

Bug-AGL: SPEC-705 SPEC-707

Change-Id: I1fbb6bc5862ada6b8b5479796c6a488a11c53ed4
Signed-off-by: Jan-Simon Möller <jsmoeller@linuxfoundation.org>
Reviewed-on: https://gerrit.automotivelinux.org/gerrit/9933
Tested-by: Jenkins Job builder account <agl-jobbuilder@automotivelinux.org>
ci-image-build: Jenkins Job builder account <agl-jobbuilder@automotivelinux.org>
---
 meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend

(limited to 'meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend')

diff --git a/meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend b/meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend
new file mode 100644
index 000000000..a9f2a238d
--- /dev/null
+++ b/meta-agl-bsp/meta-core/recipes-core/glibc/glibc_2.24.bbappend
@@ -0,0 +1,4 @@
+FILESEXTRAPATHS_prepend := "${THISDIR}/files:"
+
+# include fix for CVE-2017-1000366
+SRCREV = "86ac4a78a9218d1e1dcfbacc6f7d09957c1fe3a4"
\ No newline at end of file
-- 
cgit 1.2.3-korg