]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: af56acf) | patch
connman: fix CVE-2021-33833
authorSteve Sakoman <steve@sakoman.com>
Mon, 7 Feb 2022 17:09:03 +0000 (07:09 -1000)
committerSteve Sakoman <steve@sakoman.com>
Wed, 9 Feb 2022 14:45:36 +0000 (04:45 -1000)
commit8eb4fdd19fe4b275c26c49120b364cd24ec151d5
tree62777eb3b1b9a803763857e9b520f9fd69c93eb8tree | snapshot
parentaf56acf66b4196c961a20ec59faa580cc3e3ee23commit | diff
connman: fix CVE-2021-33833

ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based
buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or
RDLENGTH (for A or AAAA).

Backport patch from:
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=eceb2e8d2341c041df55a5e2f047d9a8c491463c

CVE: CVE-2021-33833

Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-connectivity/connman/connman/CVE-2021-33833.patch [new file with mode: 0644] blob
meta/recipes-connectivity/connman/connman_1.37.bb diff | blob | history
Mirror of the official openembedded-core repository