mirrors/poky - poky - zepto initiative

mirror of https://git.yoctoproject.org/poky synced 2026-02-25 10:59:41 +01:00

Author	SHA1	Message	Date
Vijay Anusuri	9bf63ee197	sqlite3: Backport fix for CVE-2023-7104 Backport https://sqlite.org/src/info/0e4e7a05c4204b47 (From OE-Core rev: 2a418c0a55d0d4e9a70a41c9a7cfea97ec0edee9) Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>	2024-01-31 03:51:10 -10:00
Sana Kazi	915a752d37	sqlite3: Fix CVE-2021-20223 Fix CVE-2021-20223 for sqlite3 Link: `d1d43efa4f`.patch (From OE-Core rev: b42ea2b7f9149f9066662e95fd0159d7c3d1fc84) Signed-off-by: Sana Kazi <Sana.Kazi@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-09-23 16:22:59 +01:00
Virendra Thakur	10c6b704c0	sqlite3: Fix CVE-2020-35527 Add patch file to fix CVE-2020-35527 Reference: http://security.debian.org/debian-security/pool/updates/main/s/sqlite3/sqlite3_3.27.2-3+deb10u2.debian.tar.xz (From OE-Core rev: 2541fd0d0e2c0919d80d6b0f6262cf2c50fe309b) Signed-off-by: Virendra Thakur <virendrak@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-09-23 16:22:59 +01:00
Virendra Thakur	8b52687223	sqlite3: Fix CVE-2020-35525 Add patch to fix CVE-2020-35525 Reference: http://security.debian.org/debian-security/pool/updates/main/s/sqlite3/sqlite3_3.27.2-3+deb10u2.debian.tar.xz (From OE-Core rev: ced472cf1d195a1a856d24240dbd6ee91140a347) Signed-off-by: Virendra Thakur <virendrak@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-09-23 16:22:59 +01:00
Hitendra Prajapati	d24759196a	sqlite: CVE-2022-35737 assertion failure Source: https://www.sqlite.org/ MR: 120541 Type: Security Fix Disposition: Backport from https://www.sqlite.org/src/info/aab790a16e1bdff7 ChangeID: cf6d0962be0d1f7d4a5019843da6349eb7f9acda Description: CVE-2022-35737 sqlite: assertion failure via query when compiled with -DSQLITE_ENABLE_STAT4. (From OE-Core rev: 226f9458075061cb99d71bee737bafbe73469c22) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2022-09-12 08:41:51 +01:00
Steve Sakoman	8e0df80624	sqlite3: add CVE-2015-3717 to whitelist As per https://groups.google.com/g/sqlite-dev/c/U7OjAbZO6LA this issue is believed to be either iOS specific, or fixed in 3.8.9. (From OE-Core rev: c5bfb3e4680fb69b7ce793c57082354c12ce3f13) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry-picked from d11a2157befcfe40517140988dd26bf0ed7240b6) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-12-09 23:49:01 +00:00
Steve Sakoman	9bf3399388	sqlite3: fix CVE-2020-13632 CVE: CVE-2020-13632 Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13632 (From OE-Core rev: 8d54034bb8e522f9827ec6422b32cbd4e5bf1346) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-11-12 13:07:52 +00:00
Steve Sakoman	1a057dcc73	sqlite3: fix CVE-2020-13631 CVE: CVE-2020-13631 Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13631 (From OE-Core rev: 582f253d6781a006841a436a49c3f7fdddc5bb7b) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-11-12 13:07:52 +00:00
Steve Sakoman	0d86d58505	sqlite3: fix CVE-2020-13630 CVE: CVE-2020-13630 Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13630 (From OE-Core rev: 5780879dec867bdb3c7eeeffb7a958a8b50188a4) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-11-12 13:07:52 +00:00
Steve Sakoman	e70374e51d	sqlite3: fix CVE-2020-13435 CVE: CVE-2020-13435 Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13435 (From OE-Core rev: 4780662ebaba0931ac0084d40670d9be93c0da9b) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-11-12 13:07:52 +00:00
Steve Sakoman	74d50ba1bd	sqlite3: fix CVE-2020-13434 CVE: CVE-2020-13434 Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-13434 (From OE-Core rev: 0338c2eb099532eb3b9a9de038f6b1a757348513) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-11-12 13:07:52 +00:00
Armin Kuster	2a6fa8877d	sqlite3: Security fix for CVE-2020-15358 Source: sqlite.org MR: 104526 Type: Security Fix Disposition: Backport from https://www.sqlite.org/src/vinfo/10fa79d00f8091e5?diff=1 ChangeID: a1c012b8c8aecd4970f3ae16686bf25f2376f542 Description: Affects sqlite < 3.32.3 Fixes CVE CVE-2020-15358 (From OE-Core rev: 8eb5fad746b716cba350c6cd6a30766534a90a28) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-07-07 23:15:10 +01:00
Sakib Sajal	e328ec317e	sqlite: backport CVE fixes Fixes CVE-2020-11655 and CVE-2020-11656 (From OE-Core rev: e63a38ca6ea95c0dbc79d5024c0cec31062d2e39) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-05-14 16:45:42 +01:00
Anuj Mittal	0a9ce59fda	sqlite3: fix CVE-2020-9327 (From OE-Core rev: 6acb9746744536019d5c04ce482a873916aac99f) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-03-10 23:20:33 +00:00
Anuj Mittal	73333dd4b8	sqlite3: upgrade 3.30.1 -> 3.31.1 (From OE-Core rev: 621ea68239763ce8740731e745c5002c956d4c67) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2020-02-05 12:00:34 +00:00

15 Commits