diff options
| author | Brad Bishop <bradleyb@fuzziesquirrel.com> | 2019-04-05 15:28:33 -0400 |
|---|---|---|
| committer | Brad Bishop <bradleyb@fuzziesquirrel.com> | 2019-04-05 19:31:28 +0000 |
| commit | 193236933b0f4ab91b1625b64e2187e2db4e0e8f (patch) | |
| tree | e12769d7c76d8b0517d6de3d3c72189753d253ed /poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch | |
| parent | bd93df9478f2f56ffcbc8cb88f1709c735dcd85b (diff) | |
| download | talos-openbmc-193236933b0f4ab91b1625b64e2187e2db4e0e8f.tar.gz talos-openbmc-193236933b0f4ab91b1625b64e2187e2db4e0e8f.zip | |
reset upstream subtrees to HEAD
Reset the following subtrees on HEAD:
poky: 8217b477a1(master)
meta-xilinx: 64aa3d35ae(master)
meta-openembedded: 0435c9e193(master)
meta-raspberrypi: 490a4441ac(master)
meta-security: cb6d1c85ee(master)
Squashed patches:
meta-phosphor: drop systemd 239 patches
meta-phosphor: mrw-api: use correct install path
Change-Id: I268e2646d9174ad305630c6bbd3fbc1a6105f43d
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
Diffstat (limited to 'poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch')
| -rw-r--r-- | poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch | 45 |
1 files changed, 0 insertions, 45 deletions
diff --git a/poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch b/poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch deleted file mode 100644 index 45c637967..000000000 --- a/poky/meta/recipes-devtools/binutils/binutils/CVE-2018-17360.patch +++ /dev/null @@ -1,45 +0,0 @@ -From cf93e9c2cf8f8b2566f8fc86e961592b51b5980d Mon Sep 17 00:00:00 2001 -From: Alan Modra <amodra@gmail.com> -Date: Thu, 20 Sep 2018 18:23:17 +0930 -Subject: [PATCH] PR23685, buffer overflow - - PR 23685 - * peXXigen.c (pe_print_edata): Correct export address table - overflow checks. Check dataoff against section size too. - -CVE: CVE-2018-17360 -Upstream-Status: Backport -Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> ---- - bfd/ChangeLog | 6 ++++++ - bfd/peXXigen.c | 11 ++++++----- - 2 files changed, 12 insertions(+), 5 deletions(-) - ---- a/bfd/peXXigen.c -+++ b/bfd/peXXigen.c -@@ -1661,7 +1661,8 @@ pe_print_edata (bfd * abfd, void * vfile - - dataoff = addr - section->vma; - datasize = extra->DataDirectory[PE_EXPORT_TABLE].Size; -- if (datasize > section->size - dataoff) -+ if (dataoff > section->size -+ || datasize > section->size - dataoff) - { - fprintf (file, - _("\nThere is an export table in %s, but it does not fit into that section\n"), -@@ -1778,11 +1779,11 @@ pe_print_edata (bfd * abfd, void * vfile - edt.base); - - /* PR 17512: Handle corrupt PE binaries. */ -- if (edt.eat_addr + (edt.num_functions * 4) - adj >= datasize -+ /* PR 17512 file: 140-165018-0.004. */ -+ if (edt.eat_addr - adj >= datasize - /* PR 17512: file: 092b1829 */ -- || (edt.num_functions * 4) < edt.num_functions -- /* PR 17512 file: 140-165018-0.004. */ -- || data + edt.eat_addr - adj < data) -+ || (edt.num_functions + 1) * 4 < edt.num_functions -+ || edt.eat_addr - adj + (edt.num_functions + 1) * 4 > datasize) - fprintf (file, _("\tInvalid Export Address Table rva (0x%lx) or entry count (0x%lx)\n"), - (long) edt.eat_addr, - (long) edt.num_functions); |
