mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-05 02:50:46 +00:00
Code Issues Projects Releases Wiki Activity

indent: fix CVE-2023-40305

Browse Source 
GNU indent 2.2.13 has a heap-based buffer overflow in search_brace
in indent.c via a crafted file.

Reference:
https://savannah.gnu.org/bugs/index.php?64503

(cherry picked from commit 7da6cb848b)

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This commit is contained in:
Yogita Urade
2025-09-27 12:27:17 +02:00
committed by Khem Raj
parent 721d4f901d
commit 91ac7b0212
3 changed files with 8452 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-oe/recipes-extended/indent/indent/CVE-2023-40305_0001.patch
+4196
View File
File diff suppressed because it is too large Load Diff
meta-oe/recipes-extended/indent/indent/CVE-2023-40305_0002.patch
+4254
View File
File diff suppressed because it is too large Load Diff
meta-oe/recipes-extended/indent/indent_2.2.12.bb
+2
View File
@@ -17,6 +17,8 @@ SRC_URI = "${GNU_MIRROR}/${BPN}/${BP}.tar.gz \
file://0001-Makefile.am-remove-regression-dir.patch \
file://0001-Fix-builds-with-recent-gettext.patch \
file://0001-Remove-dead-paren_level-code.patch \
file://CVE-2023-40305_0001.patch \
file://CVE-2023-40305_0002.patch \
"
SRC_URI[sha256sum] = "e77d68c0211515459b8812118d606812e300097cfac0b4e9fb3472664263bb8b"