]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b585a50) | patch
perl: fix CVE-2013-1667
authorRoss Burton <ross.burton@intel.com>
Mon, 29 Apr 2013 14:41:43 +0000 (15:41 +0100)
committerRoss Burton <ross.burton@intel.com>
Mon, 29 Apr 2013 14:41:43 +0000 (15:41 +0100)
commitccc272a3f7bf240733dc3af1d8d7b870c55e1f5b
tree8367b3fd4774e318d4b8a74f352cd429ba9859b4tree | snapshot
parentb585a50b7bd735c3092af9477af263c13c853d32commit | diff
perl: fix CVE-2013-1667

From http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1667:

"The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent
attackers to cause a denial of service (memory consumption and crash) via a
crafted hash key."

Patch taken from upstream git.

Signed-off-by: Ross Burton <ross.burton@intel.com>
meta/recipes-devtools/perl/perl-5.14.2/cve-2013-1667.patch [new file with mode: 0644] blob
meta/recipes-devtools/perl/perl_5.14.2.bb diff | blob | history
Mirror of the official openembedded-core repository