]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b8d925c) | patch
connman: fix CVE-2022-23098
authorSteve Sakoman <steve@sakoman.com>
Mon, 7 Feb 2022 16:33:32 +0000 (06:33 -1000)
committerSteve Sakoman <steve@sakoman.com>
Wed, 9 Feb 2022 14:45:36 +0000 (04:45 -1000)
commitaf56acf66b4196c961a20ec59faa580cc3e3ee23
treebe4f1a94bb4c09dbcc6a7c6f37ab869c9b645448tree | snapshot
parentb8d925c1443c84500df74958aa2f75113b992453commit | diff
connman: fix CVE-2022-23098

An issue was discovered in the DNS proxy in Connman through 1.40.
The TCP server reply implementation has an infinite loop if no
data is received.

Backport patch from:
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=d8708b85c1e8fe25af7803e8a20cf20e7201d8a4

CVE: CVE-2022-23098

Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-connectivity/connman/connman/CVE-2022-23098.patch [new file with mode: 0644] blob
meta/recipes-connectivity/connman/connman_1.37.bb diff | blob | history
Mirror of the official openembedded-core repository