mirror of
https://git.yoctoproject.org/poky
synced 2026-06-02 13:29:49 +00:00
expat: fix CVE-2013-0340
expat < 4.0 is vulnerable to billion laughs attacks (see [https://github.com/libexpat/libexpat/issues/34]). This patch backports the commits b1d039607d3d8a042bf0466bfcc1c0f104e353c8 and 60959f2b491876199879d97c8ed956eabb0c2e73 from upstream. Additionally, the SRC_URI had to be adjusted due to renaming of the source archive (From OE-Core rev: b0b843797321360693172c57f2400b9c56ca51cf) Signed-off-by: Jasper Orschulko <jasper@fancydomain.eu> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Jasper Orschulko
committed by
Richard Purdie
Richard Purdie
parent
11a44f8bba
commit
8a496e9eb9
File diff suppressed because it is too large
Load Diff
@@ -1,30 +1,27 @@
|
||||
From 10342e6b600858b091bc7771e454d9e06af06410 Mon Sep 17 00:00:00 2001
|
||||
From: Khem Raj <raj.khem@gmail.com>
|
||||
Date: Thu, 2 Nov 2017 18:20:57 +0800
|
||||
From da433dbe79f2d4d5d7d79869c669594c99c5de9c Mon Sep 17 00:00:00 2001
|
||||
From: Jasper Orschulko <jasper@fancydomain.eu>
|
||||
Date: Wed, 16 Jun 2021 19:00:30 +0200
|
||||
Subject: [PATCH] Add CC tag to build
|
||||
|
||||
Add CC tag to build
|
||||
|
||||
Upstream-Status: Pending
|
||||
Signed-off-by: Khem Raj <raj.khem@gmail.com>
|
||||
Signed-off-by: Dengke Du <dengke.du@windriver.com>
|
||||
Signed-off-by: Jasper Orschulko <jasper@fancydomain.eu>
|
||||
---
|
||||
Makefile.in | 2 +-
|
||||
Makefile.am | 2 +-
|
||||
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||
|
||||
diff --git a/Makefile.in b/Makefile.in
|
||||
index 9560a95..d444bd6 100644
|
||||
--- a/Makefile.in
|
||||
+++ b/Makefile.in
|
||||
@@ -319,7 +319,7 @@ LIBCURRENT = @LIBCURRENT@
|
||||
LIBOBJS = @LIBOBJS@
|
||||
LIBREVISION = @LIBREVISION@
|
||||
LIBS = @LIBS@
|
||||
-LIBTOOL = @LIBTOOL@
|
||||
+LIBTOOL = @LIBTOOL@ --tag CC
|
||||
LIPO = @LIPO@
|
||||
LN_S = @LN_S@
|
||||
LTLIBOBJS = @LTLIBOBJS@
|
||||
diff --git a/Makefile.am b/Makefile.am
|
||||
index 5e1d37dd..f7a6dece 100644
|
||||
--- a/Makefile.am
|
||||
+++ b/Makefile.am
|
||||
@@ -36,7 +36,7 @@ AUTOMAKE_OPTIONS = \
|
||||
subdir-objects
|
||||
|
||||
ACLOCAL_AMFLAGS = -I m4
|
||||
-LIBTOOLFLAGS = --verbose
|
||||
+LIBTOOLFLAGS = --verbose --tag=CC
|
||||
|
||||
SUBDIRS = lib # lib goes first to build first
|
||||
if WITH_EXAMPLES
|
||||
--
|
||||
2.7.4
|
||||
2.32.0
|
||||
|
||||
|
||||
@@ -6,18 +6,16 @@ LICENSE = "MIT"
|
||||
|
||||
LIC_FILES_CHKSUM = "file://COPYING;md5=5b8620d98e49772d95fc1d291c26aa79"
|
||||
|
||||
SRC_URI = "${SOURCEFORGE_MIRROR}/expat/expat-${PV}.tar.bz2 \
|
||||
SRC_URI = "git://github.com/libexpat/libexpat.git;protocol=https \
|
||||
file://CVE-2013-0340.patch \
|
||||
file://libtool-tag.patch \
|
||||
"
|
||||
"
|
||||
|
||||
SRC_URI[md5sum] = "875a2c2ff3e8eb9e5a5cd62db2033ab5"
|
||||
SRC_URI[sha256sum] = "f1063084dc4302a427dabcca499c8312b3a32a29b7d2506653ecc8f950a9a237"
|
||||
SRCREV = "a7bc26b69768f7fb24f0c7976fae24b157b85b13"
|
||||
|
||||
inherit autotools lib_package
|
||||
|
||||
do_configure_prepend () {
|
||||
rm -f ${S}/conftools/libtool.m4
|
||||
}
|
||||
S = "${WORKDIR}/git/expat"
|
||||
|
||||
BBCLASSEXTEND = "native nativesdk"
|
||||
|
||||
|
||||
Reference in New Issue
Block a user