code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	yanjun.zhu <yanjun.zhu@windriver.com>
	Fri, 30 Nov 2012 11:08:56 +0000 (19:08 +0800)
committer	Ross Burton <ross.burton@intel.com>
	Wed, 5 Dec 2012 12:51:55 +0000 (12:51 +0000)
commit	a1ef9a5f647abfafd337b22b6353848962bcb00d
tree	0b2530091e9d85e842c91d28b95cb500ba2b61e3	tree \| snapshot
parent	3b7a39d5e386f5e5b098b532d70c32d611a47ac9	commit \| diff

libproxy: Fix for CVE-2012-4504

Reference:https://code.google.com/p/libproxy/source/detail?r=853

Stack-based buffer overflow in the url::get_pac function in url.cpp
in libproxy 0.4.x before 0.4.9 allows remote servers to have an
unspecified impact via a large proxy.pac file.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504

[YOCTO #3487]

Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch	[new file with mode: 0644]	blob
meta/recipes-support/libproxy/libproxy_0.4.7.bb		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom