mirror of
https://git.yoctoproject.org/poky
synced 2026-05-02 09:32:14 +02:00
396373610c
ncurses 6.3 before patch 20220416 has an out-of-bounds read and
segmentation violation in convert_strings in tinfo/read_entry.c in the
terminfo library.
Backported from the link below, extracting only the relevant changes.
9d1d651878
(From OE-Core rev: 2287d591cf32f5580ea6679805d04c3a5146ecd5)
Signed-off-by: Gustavo Lima Chaves <gustavo.chaves@microsoft.com>
Signed-off-by: Dan Tran <dantran@microsoft.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
17 lines
677 B
BlitzBasic
17 lines
677 B
BlitzBasic
require ncurses.inc
|
|
|
|
SRC_URI += "file://0001-tic-hang.patch \
|
|
file://0002-configure-reproducible.patch \
|
|
file://0003-gen-pkgconfig.in-Do-not-include-LDFLAGS-in-generated.patch \
|
|
file://CVE-2021-39537.patch \
|
|
file://CVE-2022-29458.patch \
|
|
"
|
|
# commit id corresponds to the revision in package version
|
|
SRCREV = "a669013cd5e9d6434e5301348ea51baf306c93c4"
|
|
S = "${WORKDIR}/git"
|
|
EXTRA_OECONF += "--with-abi-version=5"
|
|
UPSTREAM_CHECK_GITTAGREGEX = "(?P<pver>\d+(\.\d+)+(\+\d+)*)"
|
|
|
|
# This is needed when using patchlevel versions like 6.1+20181013
|
|
#CVE_VERSION = "${@d.getVar("PV").split('+')[0]}.${@d.getVar("PV").split('+')[1]}"
|