mirror of
https://git.yoctoproject.org/poky
synced 2026-06-21 13:54:22 +02:00
e3072d229a
According to [1], Improper access control for volatile memory containing boot
code in Universal Boot Loader (U-Boot) before 2017.11 and Qualcomm chips IPQ4019,
IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker
to execute arbitrary code.
Backport a patch [2] from upstream to fix CVE-2025-24857
[1] https://nvd.nist.gov/vuln/detail/CVE-2025-24857
[2] 87d85139a9
(From OE-Core rev: 6f69c878896b536f5f7b16c566d420e188c82c7f)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
27 lines
869 B
PHP
27 lines
869 B
PHP
HOMEPAGE = "http://www.denx.de/wiki/U-Boot/WebHome"
|
|
DESCRIPTION = "U-Boot, a boot loader for Embedded boards based on PowerPC, \
|
|
ARM, MIPS and several other processors, which can be installed in a boot \
|
|
ROM and used to initialize and test the hardware or to download and run \
|
|
application code."
|
|
SECTION = "bootloaders"
|
|
DEPENDS += "flex-native bison-native python3-setuptools-native"
|
|
|
|
LICENSE = "GPL-2.0-or-later"
|
|
LIC_FILES_CHKSUM = "file://Licenses/README;md5=2ca5f2c35c8cc335f0a19756634782f1"
|
|
PE = "1"
|
|
|
|
# We use the revision in order to avoid having to fetch it from the
|
|
# repo during parse
|
|
SRCREV = "866ca972d6c3cabeaf6dbac431e8e08bb30b3c8e"
|
|
|
|
SRC_URI = "git://source.denx.de/u-boot/u-boot.git;protocol=https;branch=master \
|
|
file://CVE-2025-24857.patch \
|
|
"
|
|
|
|
S = "${WORKDIR}/git"
|
|
B = "${WORKDIR}/build"
|
|
|
|
inherit pkgconfig
|
|
|
|
do_configure[cleandirs] = "${B}"
|