[gnome-continuous-yocto/gnomeostree-3.28-rocko: 1648/8267] foomatic-filters: Security fixes CVE-2015-8327

From: Emmanuele Bassi <ebassi src gnome org>
To: commits-list gnome org
Cc:
Subject: [gnome-continuous-yocto/gnomeostree-3.28-rocko: 1648/8267] foomatic-filters: Security fixes CVE-2015-8327
Date: Sat, 16 Dec 2017 22:07:19 +0000 (UTC)

commit 2db1d3b76db641c050c7a7d629b9a613616c886f
Author: Armin Kuster <akuster mvista com>
Date:   Sun Jul 31 08:30:18 2016 -0700

    foomatic-filters: Security fixes CVE-2015-8327
    
    CVE-2015-8327 cups-filters: foomatic-rip did not consider the back tick as an illegal shell escape 
character
    
    (From OE-Core rev: 986f7fbe37a48d050611f08f7160ed96755ac3dc)
    
    Signed-off-by: Armin Kuster <akuster808 gmail com>
    Signed-off-by: Richard Purdie <richard purdie linuxfoundation org>

 .../foomatic-filters-4.0.17/CVE-2015-8327.patch    |   23 ++++++++++++++++++++
 .../foomatic/foomatic-filters_4.0.17.bb            |    1 +
 2 files changed, 24 insertions(+), 0 deletions(-)
---
diff --git a/meta/recipes-extended/foomatic/foomatic-filters-4.0.17/CVE-2015-8327.patch 
b/meta/recipes-extended/foomatic/foomatic-filters-4.0.17/CVE-2015-8327.patch
new file mode 100644
index 0000000..aaedc88
--- /dev/null
+++ b/meta/recipes-extended/foomatic/foomatic-filters-4.0.17/CVE-2015-8327.patch
@@ -0,0 +1,23 @@
+Upstream-Status: Backport
+
+
+http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7406
+
+Hand applied change to util.c. Fix was for cups-filters but also applied to foomatic-filters.
+
+CVE: CVE-2015-8327
+Signed-off-by: Armin Kuster <akuster mvista com>
+
+Index: util.c
+===================================================================
+--- a/util.c
++++ b/util.c
+@@ -31,7 +31,7 @@
+ #include <assert.h>
+ 
+ 
+-const char* shellescapes = "|;<>&!$\'\"#*?()[]{}";
++const char* shellescapes = "|;<>&!$\'\"`#*?()[]{}";
+ 
+ const char * temp_dir()
+ {
diff --git a/meta/recipes-extended/foomatic/foomatic-filters_4.0.17.bb 
b/meta/recipes-extended/foomatic/foomatic-filters_4.0.17.bb
index 497d2bf..3f439e7 100644
--- a/meta/recipes-extended/foomatic/foomatic-filters_4.0.17.bb
+++ b/meta/recipes-extended/foomatic/foomatic-filters_4.0.17.bb
@@ -18,6 +18,7 @@ LIC_FILES_CHKSUM = "file://${WORKDIR}/foomatic-filters-${PV}/COPYING;md5=393a5ca
 SRC_URI = "http://www.openprinting.org/download/foomatic/foomatic-filters-${PV}.tar.gz";
 
 SRC_URI += "file://CVE-2015-8560.patch \
+            file://CVE-2015-8327.patch \
            "
 
 SRC_URI[md5sum] = "b05f5dcbfe359f198eef3df5b283d896"

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]