wok-next rev 18711

grub2-efi: CVE-2015-8370 fix
author Pascal Bellard <pascal.bellard@slitaz.org>
date Wed Dec 16 18:20:12 2015 +0100 (2015-12-16)
parents de8ecd2ce530
children 3522a8f16bbe
files grub2-efi/receipt
line diff
     1.1 --- a/grub2-efi/receipt	Wed Dec 16 18:01:12 2015 +0100
     1.2 +++ b/grub2-efi/receipt	Wed Dec 16 18:20:12 2015 +0100
     1.3 @@ -18,6 +18,9 @@
     1.4  # Rules to configure and make the package.
     1.5  compile_rules()
     1.6  {
     1.7 +	# CVE-2015-8370
     1.8 +	sed -i "s/'.b'/& \\&\\& cur_len/" grub-core/lib/crypto.c grub-core/normal/auth.c
     1.9 +
    1.10  	# Fixes for flex 2.5.37
    1.11  	export CFLAGS="-Wno-error=sign-compare"
    1.12  	sed -i 's/YY_FATAL_ERROR/REMOVED_&/' grub-core/script/yylex.l