mirror of
https://git.yoctoproject.org/poky
synced 2026-02-22 17:39:39 +01:00
1693b28967
Backport upstream commit to address vulnerabilities: CVE: CVE-2017-6965 [BZ 21137] -- https://sourceware.org/bugzilla/show_bug.cgi?id=21137 Fix readelf writing to illegal addresses whilst processing corrupt input files containing symbol-difference relocations. PR binutils/21137 * readelf.c (target_specific_reloc_handling): Add end parameter. Check for buffer overflow before writing relocated values. (apply_relocations): Pass end to target_specific_reloc_handling. CVE: CVE-2017-6966 [BZ 21139] -- https://sourceware.org/bugzilla/show_bug.cgi?id=21139 Fix read-after-free error in readelf when processing multiple, relocated sections in an MSP430 binary. PR binutils/21139 * readelf.c (target_specific_reloc_handling): Add num_syms parameter. Check for symbol table overflow before accessing symbol value. If reloc pointer is NULL, discard all saved state. (apply_relocations): Pass num_syms to target_specific_reloc_handling. Call target_specific_reloc_handling with a NULL reloc pointer after processing all of the relocs. (From OE-Core rev: 477afc5634698d6c5cdb6d7705a31d859495695d) Signed-off-by: Yuanjie Huang <yuanjie.huang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
50 lines
2.3 KiB
PHP
50 lines
2.3 KiB
PHP
LIC_FILES_CHKSUM="\
|
|
file://COPYING;md5=59530bdf33659b29e73d4adb9f9f6552\
|
|
file://COPYING.LIB;md5=9f604d8a4f8e74f4f5140845a21b6674\
|
|
file://COPYING3;md5=d32239bcb673463ab874e80d47fae504\
|
|
file://COPYING3.LIB;md5=6a6a8e020838b23406c81b19c1d46df6\
|
|
file://gas/COPYING;md5=d32239bcb673463ab874e80d47fae504\
|
|
file://include/COPYING;md5=59530bdf33659b29e73d4adb9f9f6552\
|
|
file://include/COPYING3;md5=d32239bcb673463ab874e80d47fae504\
|
|
file://libiberty/COPYING.LIB;md5=a916467b91076e631dd8edb7424769c7\
|
|
file://bfd/COPYING;md5=d32239bcb673463ab874e80d47fae504\
|
|
"
|
|
|
|
def binutils_branch_version(d):
|
|
pvsplit = d.getVar('PV', True).split('.')
|
|
return pvsplit[0] + "_" + pvsplit[1]
|
|
|
|
BINUPV = "${@binutils_branch_version(d)}"
|
|
|
|
UPSTREAM_CHECK_GITTAGREGEX = "binutils-(?P<pver>\d+_(\d_?)*)"
|
|
|
|
SRCREV = "5fe53ce37f9d9dd544ec8cc9e2863b68e1a61f4c"
|
|
SRC_URI = "\
|
|
git://sourceware.org/git/binutils-gdb.git;branch=binutils-${BINUPV}-branch;protocol=git \
|
|
file://0002-configure-widen-the-regexp-for-SH-architectures.patch \
|
|
file://0003-Point-scripts-location-to-libdir.patch \
|
|
file://0004-Only-generate-an-RPATH-entry-if-LD_RUN_PATH-is-not-e.patch \
|
|
file://0005-Explicitly-link-with-libm-on-uclibc.patch \
|
|
file://0006-Use-libtool-2.4.patch \
|
|
file://0007-Add-the-armv5e-architecture-to-binutils.patch \
|
|
file://0008-don-t-let-the-distro-compiler-point-to-the-wrong-ins.patch \
|
|
file://0009-warn-for-uses-of-system-directories-when-cross-linki.patch \
|
|
file://0010-Fix-rpath-in-libtool-when-sysroot-is-enabled.patch \
|
|
file://0011-Change-default-emulation-for-mips64-linux.patch \
|
|
file://0012-Add-support-for-Netlogic-XLP.patch \
|
|
file://0013-fix-the-incorrect-assembling-for-ppc-wait-mnemonic.patch \
|
|
file://0014-libtool-remove-rpath.patch \
|
|
file://0015-binutils-mips-gas-pic-relax-linkonce.diff \
|
|
file://0015-Refine-.cfi_sections-check-to-only-consider-compact-.patch \
|
|
file://0016-Fix-seg-fault-in-ARM-linker-when-trying-to-parse-a-b.patch \
|
|
file://0017-Fix-the-generation-of-alignment-frags-in-code-sectio.patch \
|
|
file://0001-ppc-apuinfo-for-spe-parsed-incorrectly.patch \
|
|
file://CVE-2017-6965.patch \
|
|
file://CVE-2017-6966.patch \
|
|
"
|
|
S = "${WORKDIR}/git"
|
|
|
|
do_configure_prepend () {
|
|
rm -rf ${S}/gdb ${S}/libdecnumber ${S}/readline ${S}/sim
|
|
}
|