code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	Trevor Gamblin <trevor.gamblin@windriver.com>
	Wed, 16 Jun 2021 13:02:01 +0000 (09:02 -0400)
committer	Anuj Mittal <anuj.mittal@intel.com>
	Fri, 18 Jun 2021 05:21:36 +0000 (13:21 +0800)
commit	456ba1717fc3ebb9d10cc6a3c916b07f7c4e8a22
tree	4e719eaf96f6fbbc39feeedce50d760475fca4e4	tree \| snapshot
parent	bfe25c99e914062b0527a6e74ebb8ce1eaad4ca8	commit \| diff

curl: cleanup CVE patches for hardknott

The patch backported to address CVE-2021-22890 was missing a bracket to
properly close out the logic in lib/vtls/wolfssl.c. Fix this so to avoid
any surprise failures when using curl with hardknott.

Also fix the CVE designation in the patch descriptions for CVEs
CVE-2021-22890 and CVE-2021-22876 so that CVE checks run with bitbake
correctly detect that they are patched.

Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>

meta/recipes-support/curl/curl/0001-vtls-add-isproxy-argument-to-Curl_ssl_get-addsession.patch		diff \| blob \| history
meta/recipes-support/curl/curl/0002-transfer-strip-credentials-from-the-auto-referer-hea.patch		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom