]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 84c6a67) | patch
glibc: Fixes a heap buffer overflow in glibc wscanf.
authorArmin Kuster <akuster808@gmail.com>
Thu, 17 Dec 2015 04:32:06 +0000 (20:32 -0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sat, 30 Jan 2016 12:02:16 +0000 (12:02 +0000)
commit5aa90eef9b503ba0ffb138e146add6f430dea917
tree36416c680ed4ca60878c8a452f969be80da8441dtree | snapshot
parent84c6a67baaafee565ac4fad229bd8d07a21da09ccommit | diff
glibc: Fixes a heap buffer overflow in glibc wscanf.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1472
https://sourceware.org/ml/libc-alpha/2015-02/msg00119.html
http://openwall.com/lists/oss-security/2015/02/04/1

Reference to upstream fix:
https://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commit;
h=5bd80bfe9ca0d955bfbbc002781bc7b01b6bcb06

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
Hand applied.

Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/recipes-core/glibc/glibc/CVE-2015-1472-wscanf-allocates-too-little-memory.patch [new file with mode: 0644] blob
meta/recipes-core/glibc/glibc_2.20.bb diff | blob | history
Mirror of the official openembedded-core repository