1From 14d72f6973270f78455a8628143f2cff90e8f41e Mon Sep 17 00:00:00 2001 2From: Trevor Gamblin <tgamblin@baylibre.com> 3Date: Tue, 29 Aug 2023 14:12:27 -0400 4Subject: [PATCH] selftest-hello: fix CVE-1234-56789 5 6CVE: CVE-1234-56789 7 8Approved: Trevor Gamblin <tgamblin@baylibre.com> 9--- 10 .../selftest-hello/files/CVE-1234-56789.patch | 27 +++++++++++++++++++ 11 .../selftest-hello/selftest-hello_1.0.bb | 6 +++-- 12 2 files changed, 31 insertions(+), 2 deletions(-) 13 create mode 100644 meta-selftest/recipes-test/selftest-hello/files/CVE-1234-56789.patch 14 15diff --git a/meta-selftest/recipes-test/selftest-hello/files/CVE-1234-56789.patch b/meta-selftest/recipes-test/selftest-hello/files/CVE-1234-56789.patch 16new file mode 100644 17index 0000000000..869cfb6fe5 18--- /dev/null 19+++ b/meta-selftest/recipes-test/selftest-hello/files/CVE-1234-56789.patch 20@@ -0,0 +1,27 @@ 21+From b26a31186e6ee2eb1f506d5f2f9394d327a0df2f Mon Sep 17 00:00:00 2001 22+From: Trevor Gamblin <tgamblin@baylibre.com> 23+Date: Tue, 29 Aug 2023 14:08:20 -0400 24+Subject: [PATCH] Fix CVE-NOT-REAL 25+ 26+CVE: CVE-1234-56789 27+Upstream-Status: Backport(http://example.com/example) 28+ 29+Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> 30+--- 31+ strlen.c | 1 + 32+ 1 file changed, 1 insertion(+) 33+ 34+diff --git a/strlen.c b/strlen.c 35+index 1788f38..83d7918 100644 36+--- a/strlen.c 37++++ b/strlen.c 38+@@ -8,6 +8,7 @@ int main() { 39+ 40+ printf("%d\n", str_len(string1)); 41+ printf("%d\n", str_len(string2)); 42++ printf("CVE FIXED!!!\n"); 43+ 44+ return 0; 45+ } 46+-- 47+2.41.0 48diff --git a/meta-selftest/recipes-test/selftest-hello/selftest-hello_1.0.bb b/meta-selftest/recipes-test/selftest-hello/selftest-hello_1.0.bb 49index 547587bef4..76975a6729 100644 50--- a/meta-selftest/recipes-test/selftest-hello/selftest-hello_1.0.bb 51+++ b/meta-selftest/recipes-test/selftest-hello/selftest-hello_1.0.bb 52@@ -3,7 +3,9 @@ SECTION = "examples" 53 LICENSE = "MIT" 54 LIC_FILES_CHKSUM = "file://${COMMON_LICENSE_DIR}/MIT;md5=0835ade698e0bcf8506ecda2f7b4f302" 55 56-SRC_URI = "file://helloworld.c" 57+SRC_URI = "file://helloworld.c \ 58+ file://CVE-1234-56789.patch \ 59+ " 60 61 S = "${WORKDIR}" 62 63@@ -16,4 +18,4 @@ do_install() { 64 install -m 0755 helloworld ${D}${bindir} 65 } 66 67-BBCLASSEXTEND = "native nativesdk" 68\ No newline at end of file 69+BBCLASSEXTEND = "native nativesdk" 70-- 712.41.0 72 73