]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 3ca3c89) | patch
libxml2: fix CVE-2021-3517
authorTony Tascioglu <tony.tascioglu@windriver.com>
Fri, 14 May 2021 13:14:48 +0000 (09:14 -0400)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sat, 22 May 2021 09:01:16 +0000 (10:01 +0100)
commit16ad173ba0e8f88b23c62aa8357b8afca36c2161
treee6ca02c5ae15e0571c3be5f5759f9c23243e82f9tree | snapshot
parent3ca3c890834152597d8440b77e3d2767ca72c7a6commit | diff
libxml2: fix CVE-2021-3517

Fixes heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

CVE: CVE-2021-3517
Upstream-status: Backport [https://gitlab.gnome.org/GNOME/libxml2/-/commit/bf22713507fe1fc3a2c4b525cf0a88c2dc87a3a2]

Signed-off-by: Tony Tascioglu <tony.tascioglu@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-core/libxml/libxml2/CVE-2021-3517.patch [new file with mode: 0644] blob
meta/recipes-core/libxml/libxml2_2.9.10.bb diff | blob | history
Mirror of the official openembedded-core repository