]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 4651afd) | patch
libxml2: Fix CVE-2017-9047 and CVE-2017-9048
authorAndrej Valek <andrej.valek@siemens.com>
Wed, 14 Jun 2017 12:55:03 +0000 (14:55 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 23 Jun 2017 10:43:38 +0000 (11:43 +0100)
commitbb0af023e811907b4e641b39f654ca921ac8794a
treeab4b2e2ad8779a710b014ba09a44bf7a119ea750tree | snapshot
parent4651afdd457eca06da07331186bf28b98df2eeffcommit | diff
libxml2: Fix CVE-2017-9047 and CVE-2017-9048

xmlSnprintfElementContent failed to correctly check the available
buffer space in two locations.

Fixes bug 781333 and bug 781701

CVE: CVE-2017-9047 CVE-2017-9048
Signed-off-by: Andrej Valek <andrej.valek@siemens.com>
meta/recipes-core/libxml/libxml2/libxml2-CVE-2017-9047_CVE-2017-9048.patch [new file with mode: 0644] blob
meta/recipes-core/libxml/libxml2_2.9.4.bb diff | blob | history
Mirror of the official openembedded-core repository