code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	Xufeng Zhang <xufeng.zhang@windriver.com>
	Thu, 24 Jul 2014 03:27:47 +0000 (23:27 -0400)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Fri, 25 Jul 2014 14:33:34 +0000 (15:33 +0100)
commit	191cab2f679491c2b6ddba49c5cf4886dcd22f57
tree	3e62a3357d3f46d8ffc9b7c87ac4f85c095679e7	tree \| snapshot
parent	86c2483f0fe05fb763d280ae22d70e54cb4bb0bc	commit \| diff

nspr: Fix for CVE-2014-1545

Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote
attackers to execute arbitrary code or cause a denial of service
(out-of-bounds write) via vectors involving the sprintf and console
functions.Per: http://cwe.mitre.org/data/definitions/787.html

Signed-off-by: Xufeng Zhang <xufeng.zhang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

meta/recipes-support/nspr/nspr/nspr-CVE-2014-1545.patch	[new file with mode: 0644]	blob
meta/recipes-support/nspr/nspr_4.10.3.bb		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom