]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 9b8ca9d) | patch
nss: CVE-2014-1544
authorLi Wang <li.wang@windriver.com>
Tue, 26 Aug 2014 08:33:24 +0000 (16:33 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 10 Oct 2014 14:05:51 +0000 (15:05 +0100)
commit7e4f3f167c40c09bf2c32f5e366a8fad3c66b74b
treead6873f4b4b90d361d00271b4b094bc73d4ece97tree | snapshot
parent9b8ca9d9b0b12dff8a3908da00020d253685958fcommit | diff
nss: CVE-2014-1544

the patch comes from:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-1544
https://hg.mozilla.org/projects/nss/rev/204f22c527f8

author  Robert Relyea <rrelyea@redhat.com>
https://bugzilla.mozilla.org/show_bug.cgi?id=963150
Bug 963150: Add nssCertificate_AddRef and nssCertificate_Destroy calls
to PK11_ImportCert to prevent nssTrustDomain_AddCertsToCache from
freeing the CERTCertificate associated with the NSSCertificate. r=wtc.

(From OE-Core rev: 7ef613c7f4b9e4ff153766f31dae81fc4810c0df)

Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/nss/files/nss-CVE-2014-1544.patch [new file with mode: 0644] blob
meta/recipes-support/nss/nss.inc diff | blob | history
Mirror of the official openembedded-core repository