musl: Fix CVE-2019-14697
authorHauke Mehrtens <hauke@hauke-m.de>
Sun, 18 Aug 2019 21:24:43 +0000 (23:24 +0200)
committerHauke Mehrtens <hauke@hauke-m.de>
Sun, 18 Aug 2019 21:41:06 +0000 (23:41 +0200)
commitc262daf308e0f0bd93bb5c5ee6238773935079ee
tree55b13a51a5a1fe931f9a06e41b965bac336a8f59
parent9cdb4753bea9986265418e59d206b05bcf0aad99
musl: Fix CVE-2019-14697

musl libc through 1.1.23 has an x87 floating-point stack adjustment
imbalance, related to the math/i386/ directory. In some cases, use of
this library could introduce out-of-bounds writes that are not present
in an application's source code.

This problem only affects x86 and no other architectures.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
toolchain/musl/common.mk
toolchain/musl/patches/030-fix-x87-stack-imbalance-in-corner-cases-of-i386-math.patch [new file with mode: 0644]
toolchain/musl/patches/031-fix-build-regression-in-i386-asm-for-atan2-atan2f.patch [new file with mode: 0644]