On Thu, Nov 30, 2017 at 9:16 AM, akuster808 <akuster...@gmail.com> wrote: > > > On 11/21/2017 12:03 PM, George McCollister wrote: >> Add backported patches from the upstream release/2.25/master branch to >> fix CVE-2017-1000366. Also add a backported patch that resolves SSE >> related build problems introduced by these patches. > > Thanks for the patch. This series causes an error when: bitbake > core-image-sato -c populate_sdk, so its on hold. >
Sorry for the delay, this got buried in my inbox and I didn't see it until today (updated email filters so it shouldn't happen again). The problem here is that 0003-nativesdk-glibc-Raise-the-size-of-arrays-containing-.patch is applied first and also touches elf/rtld.c. This causes the patches in this series to be applied incorrectly against nativesdk-glibc. The fact that the nativesdk patches are applied before the base patches is a bit concerning as it could cause other problems as well. It seems like it would be much safer to apply the base patches then apply the nativesdk patches to avoid conflicts. Your thoughts? -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core