]> git.ipfire.org Git - thirdparty/openwrt.git/commit
projects / thirdparty / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f4ee086) | patch
bsdiff: Add patches for CVEs 13630/head
authorHauke Mehrtens <hauke@hauke-m.de>
Sat, 7 Oct 2023 19:07:20 +0000 (21:07 +0200)
committerHauke Mehrtens <hauke@hauke-m.de>
Mon, 9 Oct 2023 21:42:37 +0000 (23:42 +0200)
commitcac723e8b8748938b8d80603578c60189fc32b24
tree72d491c8b6cd3e0de68e023aa5e5b932c20fdb65tree
parentf4ee08677cdeefba7cfda40a830b6b747c6ea36ecommit | diff
bsdiff: Add patches for CVEs

Add two patches from Debian fixing CVEs in the bsdiff application.
CVE-2014-9862: Heap vulnerability in bspatch
CVE-2020-14315: Memory Corruption Vulnerability in bspatch

Copied the patches from this location:
https://salsa.debian.org/debian/bsdiff/-/blob/debian/latest/debian/patches/20-CVE-2014-9862.patch
https://salsa.debian.org/debian/bsdiff/-/blob/debian/latest/debian/patches/33-CVE-2020-14315.patch

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
package/utils/bsdiff/Makefile diff | blob | blame | history
package/utils/bsdiff/patches/001-musl.patch diff | blob | blame | history
package/utils/bsdiff/patches/020-CVE-2014-9862.patch [new file with mode: 0644] blob
package/utils/bsdiff/patches/033-CVE-2020-14315.patch [new file with mode: 0644] blob
Mirror of https://github.com/openwrt/openwrt.git