mirror of
https://git.yoctoproject.org/poky
synced 2026-06-01 00:59:48 +00:00
Adrian Dudau
047e58b4ba
affects qemu < 2.7.0 Quick Emulator(Qemu) built with the VMWARE PVSCSI paravirtual SCSI bus emulation support is vulnerable to an OOB r/w access issue. It could occur while processing SCSI commands 'PVSCSI_CMD_SETUP_RINGS' or 'PVSCSI_CMD_SETUP_MSG_RING'. A privileged user inside guest could use this flaw to crash the Qemu process resulting in DoS. References: ---------- http://www.openwall.com/lists/oss-security/2016/05/23/1 (From OE-Core rev: 3d6b4fd6bc4338b139ebcaf51b67c56cc97ba2ed) Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
42 lines
1.8 KiB
BlitzBasic
42 lines
1.8 KiB
BlitzBasic
require qemu.inc
|
|
|
|
LIC_FILES_CHKSUM = "file://COPYING;md5=441c28d2cf86e15a37fa47e15a72fbac \
|
|
file://COPYING.LIB;endline=24;md5=c04def7ae38850e7d3ef548588159913"
|
|
|
|
SRC_URI += "file://configure-fix-Darwin-target-detection.patch \
|
|
file://qemu-enlarge-env-entry-size.patch \
|
|
file://Qemu-Arm-versatilepb-Add-memory-size-checking.patch \
|
|
file://no-valgrind.patch \
|
|
file://CVE-2016-1568.patch \
|
|
file://CVE-2016-2197.patch \
|
|
file://CVE-2016-2198.patch \
|
|
file://pathlimit.patch \
|
|
file://CVE-2016-2857.patch \
|
|
file://rng_move_request_from_RngEgd_to_RngBackend.patch \
|
|
file://rng_remove_the_unused_request_cancellation_code.patch \
|
|
file://rng_move_request_queue_cleanup_from_RngEgd_to_RngBackend.patch \
|
|
file://CVE-2016-2858.patch \
|
|
file://CVE-2016-3710.patch \
|
|
file://CVE-2016-3712_p1.patch \
|
|
file://CVE-2016-3712_p2.patch \
|
|
file://CVE-2016-3712_p3.patch \
|
|
file://CVE-2016-3712_p4.patch \
|
|
file://CVE-2016-4439.patch \
|
|
file://CVE-2016-6351_p1.patch \
|
|
file://CVE-2016-6351_p2.patch \
|
|
file://CVE-2016-4002.patch \
|
|
file://CVE-2016-5403.patch \
|
|
file://CVE-2016-4441.patch \
|
|
file://CVE-2016-4952.patch \
|
|
"
|
|
SRC_URI_prepend = "http://wiki.qemu-project.org/download/${BP}.tar.bz2"
|
|
SRC_URI[md5sum] = "f469f2330bbe76e3e39db10e9ac4f8db"
|
|
SRC_URI[sha256sum] = "3443887401619fe33bfa5d900a4f2d6a79425ae2b7e43d5b8c36eb7a683772d4"
|
|
|
|
COMPATIBLE_HOST_class-target_mips64 = "null"
|
|
|
|
do_install_append() {
|
|
# Prevent QA warnings about installed ${localstatedir}/run
|
|
if [ -d ${D}${localstatedir}/run ]; then rmdir ${D}${localstatedir}/run; fi
|
|
}
|