[kirkstone,01/19] sqlite: fix CVE-2022-35737

Message ID	fdc82b2314b580c0135c16b7278ebf8786311dec.1661956484.git.steve@sakoman.com
State	Accepted, archived
Commit	fdc82b2314b580c0135c16b7278ebf8786311dec
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.210.180, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][kirkstone 01/19] sqlite: fix CVE-2022-35737 Date: Wed, 31 Aug 2022 04:39:21 -1000 Message-Id: <fdc82b2314b580c0135c16b7278ebf8786311dec.1661956484.git.steve@sakoman.com> In-Reply-To: <cover.1661956484.git.steve@sakoman.com> References: <cover.1661956484.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[kirkstone,01/19] sqlite: fix CVE-2022-35737 \| expand [kirkstone,01/19] sqlite: fix CVE-2022-35737 [kirkstone,02/19] bind: upgrade 9.18.4 -> 9.18.5 [kirkstone,03/19] linux-yocto/5.15: update to v5.15.60 [kirkstone,04/19] linux-yocto/5.15: update to v5.15.62 [kirkstone,05/19] linux-yocto: Fix COMPATIBLE_MACHINE regex match [kirkstone,06/19] linux-yocto/5.10: update to v5.10.136 [kirkstone,07/19] linux-yocto/5.10: update to v5.10.137 [kirkstone,08/19] lttng-modules: fix build for kernel 5.10.137 [kirkstone,09/19] shadow: Enable subid support [kirkstone,10/19] rootfspostcommands.py: Cleanup subid backup files generated by shadow-utils [kirkstone,11/19] shadow: Avoid nss warning/error with musl [kirkstone,12/19] util-linux: Remove --enable-raw from EXTRA_OECONF [kirkstone,13/19] libxml2: wrap xmllint to use the correct XML catalogues [kirkstone,14/19] parselogs: Ignore xf86OpenConsole error [kirkstone,15/19] xinetd: Pass missing -D_GNU_SOURCE [kirkstone,16/19] watchdog: Include needed system header for function decls [kirkstone,17/19] pinentry: enable _XOPEN_SOURCE on musl for wchar usage in curses [kirkstone,18/19] apr: Use correct strerror_r implementation based on libc type [kirkstone,19/19] gcr: Define _GNU_SOURCE

Message ID

fdc82b2314b580c0135c16b7278ebf8786311dec.1661956484.git.steve@sakoman.com

State

Accepted, archived

Commit

fdc82b2314b580c0135c16b7278ebf8786311dec

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 01/19] sqlite: fix CVE-2022-35737
Date: Wed, 31 Aug 2022 04:39:21 -1000
Message-Id: 
 <fdc82b2314b580c0135c16b7278ebf8786311dec.1661956484.git.steve@sakoman.com>
In-Reply-To: <cover.1661956484.git.steve@sakoman.com>
References: <cover.1661956484.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[kirkstone,01/19] sqlite: fix CVE-2022-35737 | expand

Commit Message

Steve Sakoman Aug. 31, 2022, 2:39 p.m. UTC

From: ghassaneben <ghassanebb@gmail.com>

Increase the size of loop variables in the printf() implementation to avoid integer overflow on multi-gigabyte string arguments. CVE-2022-35737.

This bug fix refers to: CVE-2022-35737 and it's a backport of a fix added in sqlite 3.39.2 (2022-07-21).

Signed-off-by: Ghassane Ben El Aattar <ghassaneb.aattar@huawei.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 ...riables-in-the-printf-implementation.patch | 26 +++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 meta/recipes-support/sqlite/files/0001-sqlite-Increased-the-size-of-loop-variables-in-the-printf-implementation.patch

diff --git a/meta/recipes-support/sqlite/files/0001-sqlite-Increased-the-size-of-loop-variables-in-the-printf-implementation.patch b/meta/recipes-support/sqlite/files/0001-sqlite-Increased-the-size-of-loop-variables-in-the-printf-implementation.patch
new file mode 100644
index 0000000000..9e8f039ef6
--- /dev/null
+++ b/meta/recipes-support/sqlite/files/0001-sqlite-Increased-the-size-of-loop-variables-in-the-printf-implementation.patch
@@ -0,0 +1,26 @@ 
+From ec75530b8d8268cb07d8e476d79e1b0e59492fa2 Mon Sep 17 00:00:00 2001
+From: drh
+Date: Thu, 18 Aug 2022 15:10:46 +0200
+Subject: [PATCH] sqlite: Increase the size of loop variables in the printf() implementation
+
+Increase the size of loop variables in the printf() implementation to avoid integer overflow on multi-gigabyte string arguments. CVE-2022-35737.
+
+This bug fix refers to: CVE-2022-35737 and it's a backport of a fix added in sqlite 3.39.2 (2022-07-21).
+
+Signed-off-by: Ghassane Ben El Aattar ghassaneb.aattar@huawei.com
+
+CVE: CVE-2022-35737
+
+Upstream-Status: Backport [https://www.sqlite.org/src/info/aab790a16e1bdff7]
+---
+ sqlite3.c | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/sqlite3.c b/sqlite3.c
+index f867d62..490199a 100644
+--- a/sqlite3.c
++++ b/sqlite3.c
+@@ -30234,1 +30234,2 @@ static int vxprintf(
+-        int i, j, k, n, isnull;
++        i64  i, j, k, n;
++        int isnull;

[kirkstone,01/19] sqlite: fix CVE-2022-35737

Commit Message

Patch