]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: f02e0ae) | patch
nss-3.15.1: fix CVE-2013-1739
authoryzhu1 <yanjun.zhu@windriver.com>
Wed, 18 Jun 2014 09:41:30 +0000 (05:41 -0400)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Tue, 24 Jun 2014 18:53:01 +0000 (19:53 +0100)
commit9b43af77d112e75fa9827a9080b7e94f41f9a116
tree7ffb9597b7874eb6185fb9d897b33b0fc353e385tree | snapshot
parentf02e0ae803b7a37b410c8487916331cdcae98cf3commit | diff
nss-3.15.1: fix CVE-2013-1739

Mozilla Network Security Services (NSS) before 3.15.2 does
not ensure that data structures are initialized before
read operations, which allows remote attackers to cause a
denial of service or possibly have unspecified other
impact via vectors that trigger a decryption failure.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1739
Signed-off-by: yzhu1 <yanjun.zhu@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/nss/files/nss-3.15.1-fix-CVE-2013-1739.patch [new file with mode: 0644] blob
meta/recipes-support/nss/nss.inc diff | blob | history
Mirror of the official openembedded-core repository