]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 3127e96) | patch
curl: CVE-2016-8625
authorSona Sarmadi <sona.sarmadi@enea.com>
Tue, 15 Nov 2016 09:08:20 +0000 (10:08 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Thu, 18 May 2017 12:13:36 +0000 (13:13 +0100)
commitbf8d4e9c8a7fed4e190d600a6a26d314d4b15a08
treec33861e674267e38b19e193ab365e93980ea95c9tree | snapshot
parent3127e968c9e9bb2ba302553ba4eeeb030b1eee53commit | diff
curl: CVE-2016-8625

IDNA 2003 makes curl use wrong host

Affected versions: curl 7.12.0 to and including 7.50.3
Reference:
https://curl.haxx.se/docs/adv_20161102K.html

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/recipes-support/curl/curl/CVE-2016-8625.patch [new file with mode: 0755] blob
meta/recipes-support/curl/curl/url-remove-unconditional-idn2.h-include.patch [new file with mode: 0644] blob
meta/recipes-support/curl/curl_7.47.1.bb diff | blob | history
Mirror of the official openembedded-core repository