]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b11dc35) | patch
curl: fix CVE-2021-22876
authorTrevor Gamblin <trevor.gamblin@windriver.com>
Tue, 1 Jun 2021 15:09:28 +0000 (11:09 -0400)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 2 Jun 2021 07:21:14 +0000 (08:21 +0100)
commit7c39b71b78ffc64a456872769b341cfc662e747d
treef1d28d2dcf1095344f37146903dff7e63af5846atree | snapshot
parentb11dc35cce0449623182ecf044c4a49664119b9ccommit | diff
curl: fix CVE-2021-22876

Backport and modify the patch for CVE-2021-22876 from curl 7.76 to
make it apply cleanly on 7.75.

CVE: CVE-2021-22876

Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/curl/curl/0002-transfer-strip-credentials-from-the-auto-referer-hea.patch [new file with mode: 0644] blob
meta/recipes-support/curl/curl_7.75.0.bb diff | blob | history
Mirror of the official openembedded-core repository