]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b19f599) | patch
gnutls: CVE-2015-3308
authorSona Sarmadi <sona.sarmadi@enea.com>
Thu, 3 Sep 2015 11:54:21 +0000 (13:54 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 18 Sep 2015 18:21:32 +0000 (19:21 +0100)
commit4db630c0cd7988c923eb3f48153a6cedafd6a139
treeaa1e14b61b19329b325e0a4e801702325f9182betree | snapshot
parentb19f599fe8d06d9381ae774f3289fa8c054ad1cccommit | diff
gnutls: CVE-2015-3308

Fixes use-after-free flaw in CRL distribution points parsing

Reference:
https://gitlab.com/gnutls/gnutls/commit/d6972be33264ecc49a86cd0958209cd7363af1e9
https://gitlab.com/gnutls/gnutls/commit/053ae65403216acdb0a4e78b25ad66ee9f444f02

http://www.openwall.com/lists/oss-security/2015/04/15/6

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
meta/recipes-support/gnutls/gnutls/better-fix-for-double-free-CVE-2015-3308.patch [new file with mode: 0644] blob
meta/recipes-support/gnutls/gnutls/eliminated-double-free-CVE-2015-3308.patch [new file with mode: 0644] blob
meta/recipes-support/gnutls/gnutls_3.3.12.bb diff | blob | history
Mirror of the official openembedded-core repository