diff options
author | takeshi_hoshina <takeshi_hoshina@mail.toyota.co.jp> | 2020-11-02 11:07:33 +0900 |
---|---|---|
committer | takeshi_hoshina <takeshi_hoshina@mail.toyota.co.jp> | 2020-11-02 11:07:33 +0900 |
commit | 1c7d6584a7811b7785ae5c1e378f14b5ba0971cf (patch) | |
tree | cd70a267a5ef105ba32f200aa088e281fbd85747 /external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch | |
parent | 4204309872da5cb401cbb2729d9e2d4869a87f42 (diff) |
basesystem-jjsandbox/ToshikazuOhiwa/master-jj
recipes
Diffstat (limited to 'external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch')
-rw-r--r-- | external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch | 52 |
1 files changed, 0 insertions, 52 deletions
diff --git a/external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch b/external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch deleted file mode 100644 index b6cd29af..00000000 --- a/external/poky/meta/recipes-devtools/elfutils/files/CVE-2019-7146_p1.patch +++ /dev/null @@ -1,52 +0,0 @@ -From 012018907ca05eb0ab51d424a596ef38fc87cae1 Mon Sep 17 00:00:00 2001 -From: Mark Wielaard <mark@klomp.org> -Date: Wed, 16 Jan 2019 11:57:35 +0100 -Subject: [PATCH] libebl: Check GNU property note pr_datasz fits inside note - description. - -Before printing the data values, make sure pr_datasz doesn't go beyond -the end of the note description data. - -https://sourceware.org/bugzilla/show_bug.cgi?id=24075 - -Signed-off-by: Mark Wielaard <mark@klomp.org> - -Upstream-Status: Backport -CVE: CVE-2019-7146 patch #1 -Signed-off-by: Armin Kuster <akuster@mvista.com> - ---- - libebl/ChangeLog | 4 ++++ - libebl/eblobjnote.c | 7 +++++++ - 2 files changed, 11 insertions(+) - -Index: elfutils-0.175/libebl/eblobjnote.c -=================================================================== ---- elfutils-0.175.orig/libebl/eblobjnote.c -+++ elfutils-0.175/libebl/eblobjnote.c -@@ -350,6 +350,13 @@ ebl_object_note (Ebl *ebl, uint32_t name - desc += 8; - descsz -= 8; - -+ if (prop.pr_datasz > descsz) -+ { -+ printf ("BAD property datasz: %" PRId32 "\n", -+ prop.pr_datasz); -+ return; -+ } -+ - int elfclass = gelf_getclass (ebl->elf); - char *elfident = elf_getident (ebl->elf, NULL); - GElf_Ehdr ehdr; -Index: elfutils-0.175/libebl/ChangeLog -=================================================================== ---- elfutils-0.175.orig/libebl/ChangeLog -+++ elfutils-0.175/libebl/ChangeLog -@@ -1,3 +1,7 @@ -+2019-01-16 Mark Wielaard <mark@klomp.org> -+ -+ * eblobjnte.c (ebl_object_note): Check pr_datasz isn't too large. -+ - 2018-11-15 Mark Wielaard <mark@klomp.org> - - * eblobjnotetypename.c (ebl_object_note_type_name): Don't update |