mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-07-15 16:07:26 +00:00
yasm: fix CVE-2023-31975
yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm/intnum.c. References: https://nvd.nist.gov/vuln/detail/CVE-2023-31975 https://github.com/yasm/yasm/issues/210 Upstream patches: https://github.com/yasm/yasm/commit/b2cc5a1693b17ac415df76d0795b15994c106441 Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
This commit is contained in:
committed by
Armin Kuster
parent
4da92ed9be
commit
83f5741bd5
@@ -11,6 +11,7 @@ PV = "1.3.0+git${SRCPV}"
|
||||
SRCREV = "ba463d3c26c0ece2e797b8d6381b161633b5971a"
|
||||
SRC_URI = "git://github.com/yasm/yasm.git;branch=master;protocol=https \
|
||||
file://0001-Do-not-use-AC_HEADER_STDC.patch \
|
||||
file://CVE-2023-31975.patch \
|
||||
"
|
||||
|
||||
S = "${WORKDIR}/git"
|
||||
|
||||
Reference in New Issue
Block a user