]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
curl: Backport fix for CVE-2023-38545
authorMike Crowe <mac@mcrowe.com>
Thu, 12 Oct 2023 20:55:19 +0000 (21:55 +0100)
committerSteve Sakoman <steve@sakoman.com>
Thu, 12 Oct 2023 21:11:37 +0000 (11:11 -1000)
commitccec26b1437f1ece4cb4f27581b0df904297358f
treeed93da3171e0a26a98cc49cd5dea1822d1435b4c
parent28ad0fdd30f490612aca6cc96ee503e5f92360a8
curl: Backport fix for CVE-2023-38545

Backporting this change required tweaking the error value since the
two-level CURLE_PROXY error reporting was introduced after curl
7.69.1. The test required some tweaks to not rely on more-recent
improvements to the test infrastructure too.

Signed-off-by: Mike Crowe <mac@mcrowe.com>
CVE: CVE-2023-38545
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/curl/curl/CVE-2023-38545.patch [new file with mode: 0644]
meta/recipes-support/curl/curl_7.69.1.bb