[gnome-continuous-yocto/gnomeostree-3.28-rocko: 7264/8267] sqlite3: upgrade to 3.2.0
- From: Emmanuele Bassi <ebassi src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [gnome-continuous-yocto/gnomeostree-3.28-rocko: 7264/8267] sqlite3: upgrade to 3.2.0
- Date: Sun, 17 Dec 2017 06:00:16 +0000 (UTC)
commit 3ff394411e589b8ea46523ed3d6b90759f617d3e
Author: Wenzong Fan <wenzong fan windriver com>
Date: Tue Aug 15 22:58:36 2017 -0700
sqlite3: upgrade to 3.2.0
* Uprev from 3.19.3 to 3.2.0 for fixing CVE-2017-10989:
The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3,
as used in GDAL and other products, mishandles undersized RTree blobs
in a crafted database, leading to a heap-based buffer over-read or
possibly unspecified other impact.
https://nvd.nist.gov/vuln/detail/CVE-2017-10989
* LIC_FILES_CHKSUM updated for below changes:
-** 2001 September 15
+** 2001-09-15
(From OE-Core rev: 95b802bfe74ac6a3f6dc05edb52c87ef90600f40)
Signed-off-by: Wenzong Fan <wenzong fan windriver com>
Signed-off-by: Richard Purdie <richard purdie linuxfoundation org>
meta/recipes-support/sqlite/sqlite3_3.19.3.bb | 10 ----------
meta/recipes-support/sqlite/sqlite3_3.20.0.bb | 10 ++++++++++
2 files changed, 10 insertions(+), 10 deletions(-)
---
diff --git a/meta/recipes-support/sqlite/sqlite3_3.20.0.bb b/meta/recipes-support/sqlite/sqlite3_3.20.0.bb
new file mode 100644
index 0000000..417c362
--- /dev/null
+++ b/meta/recipes-support/sqlite/sqlite3_3.20.0.bb
@@ -0,0 +1,10 @@
+require sqlite3.inc
+
+LICENSE = "PD"
+LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed00c66"
+
+SRC_URI = "\
+ http://www.sqlite.org/2017/sqlite-autoconf-${SQLITE_PV}.tar.gz \
+ "
+SRC_URI[md5sum] = "e262a28b73cc330e7e83520c8ce14e4d"
+SRC_URI[sha256sum] = "3814c6f629ff93968b2b37a70497cfe98b366bf587a2261a56a5f750af6ae6a0"
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
