mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-31 12:49:46 +00:00
Code Issues Projects Releases Wiki Activity

foomatic-filters: Security fixes CVE-2015-8327

Browse Source 
CVE-2015-8327 cups-filters: foomatic-rip did not consider the back tick as an illegal shell escape character

this time with the recipe changes.

(From OE-Core rev: 62d6876033476592a8ca35f4e563c996120a687b)

Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Armin Kuster
2016-02-01 09:46:10 -08:00
committed by Richard Purdie
parent d57aaf7a39
commit 6a0fbfaeb5
2 changed files with 24 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta/recipes-extended/foomatic/foomatic-filters-4.0.17/CVE-2015-8327.patch
+23
View File
@@ -0,0 +1,23 @@
Upstream-Status: Backport
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7406
Hand applied change to util.c. Fix was for cups-filters but also applied to foomatic-filters.
CVE: CVE-2015-8327
Signed-off-by: Armin Kuster <akuster@mvista.com>
Index: util.c
===================================================================
--- a/util.c
+++ b/util.c
@@ -31,7 +31,7 @@
#include <assert.h>
-const char* shellescapes = "|;<>&!$\'\"#*?()[]{}";
+const char* shellescapes = "|;<>&!$\'\"`#*?()[]{}";
const char * temp_dir()
{
meta/recipes-extended/foomatic/foomatic-filters_4.0.17.bb
+1
View File
@@ -18,6 +18,7 @@ LIC_FILES_CHKSUM = "file://${WORKDIR}/foomatic-filters-${PV}/COPYING;md5=393a5ca
SRC_URI = "http://www.openprinting.org/download/foomatic/foomatic-filters-${PV}.tar.gz" SRC_URI = "http://www.openprinting.org/download/foomatic/foomatic-filters-${PV}.tar.gz"
SRC_URI += "file://CVE-2015-8560.patch \ SRC_URI += "file://CVE-2015-8560.patch \
file://CVE-2015-8327.patch \
" "
SRC_URI[md5sum] = "b05f5dcbfe359f198eef3df5b283d896" SRC_URI[md5sum] = "b05f5dcbfe359f198eef3df5b283d896"