code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	Anuj Mittal <anuj.mittal@intel.com>
	Fri, 20 Mar 2020 17:23:54 +0000 (19:23 +0200)
committer	Anuj Mittal <anuj.mittal@intel.com>
	Sat, 21 Mar 2020 03:03:56 +0000 (11:03 +0800)
commit	bc3c82e82e6d2dce025e84b8f398379f4fc6f249
tree	ec61d99b8950cf83f81e29013e575d905de7ef15	tree \| snapshot
parent	b3fcf13e332d8830e759ef4161161f0e54591700	commit \| diff

e2fsprogs: backport upstream patch

Fixes a bug wherein a use after free could potentially be used to run
malicious code if a user can be tricked into running e2fsck on a
maliciously crafted file system.

Also see:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948517

(From OE-Core rev: 23c1b157362609bd8d85c7d35e6c7f0f60c32c88)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>

meta/recipes-devtools/e2fsprogs/e2fsprogs/e2fsck-fix-use-after-free-in-calculate_tree.patch	[new file with mode: 0644]	blob
meta/recipes-devtools/e2fsprogs/e2fsprogs_1.45.3.bb		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom