mirror of
https://git.yoctoproject.org/poky
synced 2026-02-25 10:59:41 +01:00
d24759196a
Source: https://www.sqlite.org/ MR: 120541 Type: Security Fix Disposition: Backport from https://www.sqlite.org/src/info/aab790a16e1bdff7 ChangeID: cf6d0962be0d1f7d4a5019843da6349eb7f9acda Description: CVE-2022-35737 sqlite: assertion failure via query when compiled with -DSQLITE_ENABLE_STAT4. (From OE-Core rev: 226f9458075061cb99d71bee737bafbe73469c22) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
25 lines
1000 B
BlitzBasic
25 lines
1000 B
BlitzBasic
require sqlite3.inc
|
|
|
|
LICENSE = "PD"
|
|
LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed00c66"
|
|
|
|
SRC_URI = "http://www.sqlite.org/2020/sqlite-autoconf-${SQLITE_PV}.tar.gz \
|
|
file://CVE-2020-9327.patch \
|
|
file://CVE-2020-11656.patch \
|
|
file://CVE-2020-11655.patch \
|
|
file://CVE-2020-15358.patch \
|
|
file://CVE-2020-13434.patch \
|
|
file://CVE-2020-13435.patch \
|
|
file://CVE-2020-13630.patch \
|
|
file://CVE-2020-13631.patch \
|
|
file://CVE-2020-13632.patch \
|
|
file://CVE-2022-35737.patch \
|
|
"
|
|
SRC_URI[md5sum] = "2d0a553534c521504e3ac3ad3b90f125"
|
|
SRC_URI[sha256sum] = "62284efebc05a76f909c580ffa5c008a7d22a1287285d68b7825a2b6b51949ae"
|
|
|
|
# -19242 is only an issue in specific development branch commits
|
|
CVE_CHECK_WHITELIST += "CVE-2019-19242"
|
|
# This is believed to be iOS specific (https://groups.google.com/g/sqlite-dev/c/U7OjAbZO6LA)
|
|
CVE_CHECK_WHITELIST += "CVE-2015-3717"
|