]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 55f93e3) | patch
libksba: fix CVE-2022-47629
authorYogita Urade <yogita.urade@windriver.com>
Fri, 13 Jan 2023 06:12:25 +0000 (06:12 +0000)
committerSteve Sakoman <steve@sakoman.com>
Mon, 16 Jan 2023 14:41:29 +0000 (04:41 -1000)
commite4cb0bf273ea556db91699594046a47514c8583c
tree1ea35fc3e1c821a210c2820fd208c59dbddad4f8tree
parent55f93e3786290dfa5ac72b5969bb2793f6a98bdecommit | diff
libksba: fix CVE-2022-47629

Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.

CVE: CVE-2022-47926

References: https://nvd.nist.gov/vuln/detail/CVE-2022-47629

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
meta/recipes-support/libksba/libksba/0001-Fix-an-integer-overflow-in-the-CRL-signature-parser.patch [new file with mode: 0644] blob
meta/recipes-support/libksba/libksba_1.6.2.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core