@@ -33,14 +33,14 @@ SRC_URI_BASE = "https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d
file://do-not-check-local-libpng-source.patch \
file://avoid-host-contamination.patch \
file://mkdir-p.patch \
+ file://CVE-2020-15900.patch \
+ file://check-stack-limits-after-function-evalution.patch \
+ file://CVE-2021-45949.patch \
"
SRC_URI = "${SRC_URI_BASE} \
file://ghostscript-9.21-prevent_recompiling.patch \
file://cups-no-gcrypt.patch \
- file://CVE-2020-15900.patch \
- file://check-stack-limits-after-function-evalution.patch \
- file://CVE-2021-45949.patch \
"
SRC_URI_class-native = "${SRC_URI_BASE} \
CVE patches (and the stack limits check patch) should have been added to SRC_URI_BASE so that they are applied for both target and -native packages. Signed-off-by: Steve Sakoman <steve@sakoman.com> --- meta/recipes-extended/ghostscript/ghostscript_9.52.bb | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-)