]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2c1476b) | patch
glib-2.0: Fix CVE-2023-29499 and CVE-2023-32611
authorSoumya Sambu <soumya.sambu@windriver.com>
Tue, 22 Aug 2023 10:02:29 +0000 (10:02 +0000)
committerSteve Sakoman <steve@sakoman.com>
Tue, 22 Aug 2023 16:23:15 +0000 (06:23 -1000)
commit5ed552ce97e22b449c1036f6c58944ab26db2f0d
tree886d6b80d21ab7c3169e88bdd4f8e90c936a8627tree
parent2c1476bed55dc16a84b0fe163a4abb13e3ac5734commit | diff
glib-2.0: Fix CVE-2023-29499 and CVE-2023-32611

GVariant offset table entry size is not checked in is_normal()

g_variant_byteswap() can take a long time with some non-normal inputs

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-29499.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0001.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0002.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0_2.72.3.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core