]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 885cec1) | patch
nss: CVE-2014-1544
authorLi Wang <li.wang@windriver.com>
Tue, 26 Aug 2014 08:33:24 +0000 (16:33 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 27 Aug 2014 11:12:06 +0000 (12:12 +0100)
commit7ef613c7f4b9e4ff153766f31dae81fc4810c0df
treeea2a8cd84da17dd1bbb05edda6e01fd5705420a7tree | snapshot
parent885cec11c978975d5c51ded92882a3b00d5ccf8ccommit | diff
nss: CVE-2014-1544

the patch comes from:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-1544
https://hg.mozilla.org/projects/nss/rev/204f22c527f8

author  Robert Relyea <rrelyea@redhat.com>
https://bugzilla.mozilla.org/show_bug.cgi?id=963150
Bug 963150: Add nssCertificate_AddRef and nssCertificate_Destroy calls
to PK11_ImportCert to prevent nssTrustDomain_AddCertsToCache from
freeing the CERTCertificate associated with the NSSCertificate. r=wtc.

Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/nss/files/nss-CVE-2014-1544.patch [new file with mode: 0644] blob
meta/recipes-support/nss/nss.inc diff | blob | history
Mirror of the official openembedded-core repository