mirror of
https://git.yoctoproject.org/poky
synced 2026-06-02 01:19:52 +00:00
Armin Kuster
3aaf023202
Affects bzip2 <= 1.0.6 CVSS v2 Base Score: 4.3 MEDIUM (From OE-Core rev: 979c61e47d416b940ca53e22acffdacb2625cf89) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
19 lines
619 B
Diff
19 lines
619 B
Diff
Upstream-Status: Backport
|
|
https://bugzilla.suse.com/attachment.cgi?id=681334
|
|
|
|
CVE: CVE-2016-3189
|
|
Signed-off-by: Armin Kuster <akuster@mvista.com>
|
|
|
|
Index: bzip2-1.0.6/bzip2recover.c
|
|
===================================================================
|
|
--- bzip2-1.0.6.orig/bzip2recover.c
|
|
+++ bzip2-1.0.6/bzip2recover.c
|
|
@@ -457,6 +457,7 @@ Int32 main ( Int32 argc, Char** argv )
|
|
bsPutUChar ( bsWr, 0x50 ); bsPutUChar ( bsWr, 0x90 );
|
|
bsPutUInt32 ( bsWr, blockCRC );
|
|
bsClose ( bsWr );
|
|
+ outFile = NULL;
|
|
}
|
|
if (wrBlock >= rbCtr) break;
|
|
wrBlock++;
|