]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 364a9e4) | patch
glib-2.0: Fix multiple vulnerabilities
authorSiddharth Doshi <sdoshi@mvista.com>
Sun, 15 Oct 2023 15:30:39 +0000 (21:00 +0530)
committerSteve Sakoman <steve@sakoman.com>
Mon, 16 Oct 2023 15:07:13 +0000 (05:07 -1000)
commitb576beba80d44e67762d46bf3bc2f14c05bc0f6b
tree14b8309bf85aa5b3d746f39cd9e6b6a2145165ebtree
parent364a9e46f167c2501785cd55a71cf9a614e64710commit | diff
glib-2.0: Fix multiple vulnerabilities

CVE's Fixed:
CVE-2023-29499: glib: GVariant offset table entry size is not checked in is_normal()
CVE-2023-32611: glib: g_variant_byteswap() can take a long time with some non-normal inputs
CVE-2023-32636: glib: Timeout in fuzz_variant_text
CVE-2023-32643: glib: Heap-buffer-overflow in g_variant_serialised_get_child
CVE-2023-32665: glib: GVariant deserialisation does not match spec for non-normal data

Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
15 files changed:
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-29499.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0001.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0002.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32636.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32643.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0001.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0002.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0003.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0004.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0005.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0006.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0007.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0008.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0009.patch [new file with mode: 0644] blob
meta/recipes-core/glib-2.0/glib-2.0_2.62.6.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core