mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-31 12:52:39 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
b77082e38f8d6b94001df83d66fbfef0dad970cd
poky/meta
History
Sinan Kaya b77082e38f libpng: CVE-2018-13785 
* CVE-2018-13785
In libpng 1.6.34, a wrong calculation of row_factor in the
png_check_chunk_length function (pngrutil.c) may trigger an
integer overflow and resultant divide-by-zero while processing
a crafted PNG file, leading to a denial of service.

(cherry picked from 8a05766cb74af05c04c53e6c9d60c13fc4d59bf2)

Affects libpng <= 1.6.34

CVE: CVE-2018-13785
Ref: https://access.redhat.com/security/cve/cve-2018-13785
(From OE-Core rev: 4cc1862695c6899b61e3900216376c1b2f338a19)

Signed-off-by: Sinan Kaya <okaya@kernel.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2018-09-27 12:17:46 +01:00
..
classes
cve-check.bbclass: do not download the CVE DB in package-specific tasks
2018-09-27 12:17:46 +01:00
conf
yocto-uninative: Upgrade to version 2.2
2018-08-01 22:59:23 +01:00
files
Add license file EPL-2.0
2018-07-02 11:41:26 +01:00
lib
bitbake-blayers/create: add version for example recipe
2018-07-02 11:41:26 +01:00
recipes-bsp
lrzsz: fix CVE-2018-10195
2018-09-27 12:17:46 +01:00
recipes-connectivity
wpa-supplicant: fix CVE-2018-14526
2018-09-27 12:17:45 +01:00
recipes-core
busybox: CVE-2017-15874
2018-09-27 12:17:46 +01:00
recipes-devtools
binutils: Change the ARM assembler's ADR and ADRl pseudo-ops so that they will only set the bottom bit of imported thumb function symbols if the -mthumb-interwork option is active.
2018-09-27 12:17:45 +01:00
recipes-extended
libarchive: CVE-2017-14501
2018-09-27 12:17:45 +01:00
recipes-gnome
gconf: fix saving of settings when config folder doesnt exist
2018-04-13 16:58:07 +01:00
recipes-graphics
libice: patch for CVE-2017-2626
2018-09-27 12:17:45 +01:00
recipes-kernel
linux-yocto/4.14: update to v4.14.67
2018-09-27 12:17:46 +01:00
recipes-multimedia
libpng: CVE-2018-13785
2018-09-27 12:17:46 +01:00
recipes-rt
classes/recipes: Convert SkipPackage -> SkipRecipe
2018-01-26 13:09:09 +00:00
recipes-sato
settings-daemon: Drop pointless apply=yes in SRC_URI
2018-06-15 17:56:57 +01:00
recipes-support
apr-util: fix ptest fail problem
2018-09-27 12:17:46 +01:00
site
site/powerpc64-linux: add cvs_cv_func_printf_ptr
2018-07-02 11:41:25 +01:00
COPYING.GPLv2
Fix license notices for OE-Core
2014-01-02 12:58:54 +00:00
COPYING.MIT
recipes.txt
qt4: remove recipes and classes
2016-01-07 13:40:14 +00:00