git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

author	Peter Marko <peter.marko@siemens.com>
	Thu, 10 Aug 2023 20:22:37 +0000 (22:22 +0200)
committer	Steve Sakoman <steve@sakoman.com>
	Sat, 12 Aug 2023 15:38:11 +0000 (05:38 -1000)
commit	1632c7223b2f8cd595e1ba20bc006c68fc833295
tree	f5e0c1a787d6685242f2a7ac5058a6877127e35c	tree
parent	f70113d1d5b5359c8b668ba43aac362457927d9e	commit \| diff

procps: patch CVE-2023-4016

Backport patch from upstream master.

There were three changes needed to apply the patch:
* move NEWS change to start of the file
* change file location from src/ps/ to ps/
* change xmalloc/xcmalloc to malloc/cmalloc

The x*malloc functions were introduced in commit in future version.
https://gitlab.com/procps-ng/procps/-/commit/584028dbe513127ef68c55aa631480454bcc26bf
They call the original function plus additionally throw error when out of memory.
https://gitlab.com/procps-ng/procps/-/blob/v4.0.3/local/xalloc.h?ref_type=tags
So this replacement is correct in context of our version.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

meta/recipes-extended/procps/procps/CVE-2023-4016.patch	[new file with mode: 0644]	blob
meta/recipes-extended/procps/procps_3.3.16.bb		diff \| blob \| blame \| history