]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 02a0e76) | patch
curl: fix CVE-2023-28320 siglongjmp race condition may lead to crash
authorVivek Kumbhar <vkumbhar@mvista.com>
Wed, 12 Jul 2023 10:16:49 +0000 (15:46 +0530)
committerSteve Sakoman <steve@sakoman.com>
Thu, 13 Jul 2023 17:10:49 +0000 (07:10 -1000)
commita6b2b550690c2ffdce1aef9da1595a42d1bc6348
tree4caedadc57c880c6b09ca6a8e889c35eeea5896etree | snapshot
parent02a0e76e04ddbbbb381202d61cbb084333336f38commit | diff
curl: fix CVE-2023-28320 siglongjmp race condition may lead to crash

Introduced by: https://github.com/curl/curl/commit/3c49b405de4fbf1fd7127f91908261268640e54f (curl-7_9_8)
Fixed by: https://github.com/curl/curl/commit/13718030ad4b3209a7583b4f27f683cd3a6fa5f2 (curl-8_1_0)
Follow-up: https://github.com/curl/curl/commit/f446258f0269a62289cca0210157cb8558d0edc3 (curl-8_1_0)
https://curl.se/docs/CVE-2023-28320.html

Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/curl/curl/CVE-2023-28320-fol1.patch [new file with mode: 0644] blob
meta/recipes-support/curl/curl/CVE-2023-28320.patch [new file with mode: 0644] blob
meta/recipes-support/curl/curl_7.69.1.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core