mirror of
https://git.yoctoproject.org/git/poky
synced 2026-01-04 16:10:04 +00:00
55db269ae9
The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file. Backport patch to fix the issue. Some references: https://sqlite.org/src/info/02f0f4c54f2819b3 http://www.mail-archive.com/sqlite-users%40mailinglists.sqlite.org/msg105314.html (From OE-Core rev: 9b9f566d2042f2b393de88506d2da964bc4d17b0) Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
12 lines
392 B
BlitzBasic
12 lines
392 B
BlitzBasic
require sqlite3.inc
|
|
|
|
LICENSE = "PD"
|
|
LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed00c66"
|
|
|
|
SRC_URI = "\
|
|
http://www.sqlite.org/2017/sqlite-autoconf-${SQLITE_PV}.tar.gz \
|
|
file://sqlite3-fix-CVE-2017-13685.patch \
|
|
"
|
|
SRC_URI[md5sum] = "e262a28b73cc330e7e83520c8ce14e4d"
|
|
SRC_URI[sha256sum] = "3814c6f629ff93968b2b37a70497cfe98b366bf587a2261a56a5f750af6ae6a0"
|