code.ossystems Code Review - openembedded-core.git/commit

connman: Fix for CVE-2017-12865

dnsproxy: Fix crash on malformed DNS response
If the response query string is malformed, we might access memory
pass the end of "name" variable in parse_response().

[YOCTO #11959]

(From OE-Core rev: fb3e30e45eea2042fdb0b667cbc2c79ae3f5a1a9)

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Conflicts:
meta/recipes-connectivity/connman/connman_1.33.bb
Signed-off-by: Armin Kuster <akuster808@gmail.com>

author	Sona Sarmadi <sona.sarmadi@enea.com>
	Wed, 30 Aug 2017 10:21:41 +0000 (12:21 +0200)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Mon, 4 Sep 2017 16:37:53 +0000 (17:37 +0100)
commit	55a5a609e7c25fa3e62e1975a33a9cc10448165c
tree	b19f3acda1c75ef8cddb30193a085e9fe346f074	tree \| snapshot
parent	6050b4ac146722d6714589225ad58ccc26c9ca32	commit \| diff

meta/recipes-connectivity/connman/connman/CVE-2017-12865.patch	[new file with mode: 0644]	blob
meta/recipes-connectivity/connman/connman_1.33.bb		diff \| blob \| history