]> git.ipfire.org Git - thirdparty/openwrt.git/commit
projects / thirdparty / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dc04999) | patch
toolchain: musl: backport patches with CVE fixes 23329/head
authorHauke Mehrtens <hauke@hauke-m.de>
Tue, 12 May 2026 20:31:41 +0000 (22:31 +0200)
committerHauke Mehrtens <hauke@hauke-m.de>
Tue, 12 May 2026 23:59:29 +0000 (01:59 +0200)
commit6865d489d21ff5ab172d1e20533e072a32132e98
tree1a1e35c19144b9870c493089dec320460c02f55dtree | snapshot
parentdc04999b1ff41d6bac64c484e62502f933c32852commit | diff
toolchain: musl: backport patches with CVE fixes

This fixes:
 * CVE-2026-6042: Algorithmic Complexity DoS in musl libc iconv
 * CVE-2026-40200: musl libc: stack corruption in qsort with sufficiently large inputs

Link: https://github.com/openwrt/openwrt/pull/23329
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
toolchain/musl/patches/003-fix-pathological-slowness-incorrect-mappings-in-icon.patch [new file with mode: 0644] blob
toolchain/musl/patches/004-qsort-fix-leonardo-heap-corruption-from-bug-in-doubl.patch [new file with mode: 0644] blob
toolchain/musl/patches/005-qsort-hard-preclude-oob-array-writes-independent-of-.patch [new file with mode: 0644] blob
toolchain/musl/patches/006-qsort-fix-shift-UB-in-shl-and-shr.patch [new file with mode: 0644] blob
toolchain/musl/patches/900-iconv_size_hack.patch diff | blob | blame | history
Mirror of https://github.com/openwrt/openwrt.git