mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-13 17:39:57 +00:00
Zhang Peng
9d2f35c8ce
CVE-2020-36774: plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application crash). Reference: [https://nvd.nist.gov/vuln/detail/CVE-2020-36774] Upstream patches: [https://gitlab.gnome.org/GNOME/glade/-/commit/7acdd3c6f6934f47b8974ebc2190a59ea5d2ed17] Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
29 lines
1.1 KiB
BlitzBasic
29 lines
1.1 KiB
BlitzBasic
SUMMARY = "Glade - A User Interface Designer"
|
|
HOMEPAGE = "http://www.gnu.org/software/gnash"
|
|
LICENSE = "GPL-2.0-only & LGPL-2.0-only"
|
|
LIC_FILES_CHKSUM = "file://COPYING;md5=aabe87591cb8ae0f3c68be6977bb5522 \
|
|
file://COPYING.GPL;md5=9ac2e7cff1ddaf48b6eab6028f23ef88 \
|
|
file://COPYING.LGPL;md5=252890d9eee26aab7b432e8b8a616475"
|
|
DEPENDS = "gtk+ gtk+3 glib-2.0 libxml2 intltool-native \
|
|
gnome-common-native \
|
|
"
|
|
|
|
|
|
inherit features_check autotools pkgconfig gnomebase gobject-introspection mime-xdg
|
|
|
|
REQUIRED_DISTRO_FEATURES = "x11"
|
|
|
|
SRC_URI = "http://ftp.gnome.org/pub/GNOME/sources/glade/3.22/glade-${PV}.tar.xz \
|
|
file://remove-yelp-help-rules-var.patch \
|
|
file://CVE-2020-36774.patch \
|
|
"
|
|
SRC_URI[md5sum] = "c074fa378c8f1ad80d20133c4ae6f42d"
|
|
SRC_URI[sha256sum] = "edefa6eb24b4d15bd52589121dc109bc08c286157c41288deb74dd9cc3f26a21"
|
|
|
|
EXTRA_OECONF += "--disable-man-pages"
|
|
|
|
FILES:${PN} += "${datadir}/* ${libdir}/glade/modules/libgladegtk.so"
|
|
FILES:${PN}-dev += "${libdir}/glade/modules/libgladegtk.la"
|
|
FILES:${PN}-dbg += "${libdir}/glade/modules/.debug/libgladegtk.so"
|
|
|