]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: eee9314) | patch
libarchive: CVE-2017-14503
authorJagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com>
Wed, 22 Aug 2018 12:00:31 +0000 (17:30 +0530)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Thu, 23 Aug 2018 06:45:32 +0000 (07:45 +0100)
commitd6479f5d2e6de17bac8662f5057d87176524c6fa
tree4ae64b298231dff243bad95c80e320737a5fdcb2tree | snapshot
parenteee93149a49274dc3deed7d89754ee4bda240575commit | diff
libarchive: CVE-2017-14503

Reject LHA archive entries with negative size.

Affects libarchive = 3.3.2

Signed-off-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-extended/libarchive/libarchive/CVE-2017-14503.patch [new file with mode: 0644] blob
meta/recipes-extended/libarchive/libarchive_3.3.2.bb diff | blob | history
Mirror of the official openembedded-core repository