projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2c06a80) | patch
libksba: security bump to version 1.3.3
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Mon, 13 Apr 2015 21:17:56 +0000 (18:17 -0300)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Tue, 14 Apr 2015 08:06:43 +0000 (10:06 +0200)
commit3c52e364ebd6c8f834db8c7533fba817acaf8d6e
tree5d448f2250060db01b270cab0556095b3d25a9detree
parent2c06a807ccf1e240e42b153c7a904a8c43e0e04ecommit | diff
libksba: security bump to version 1.3.3

Fixes (no CVEs assigned yet):

* integer overflow in the DN decoder src/dn.c (append_quoted,
append_atv)

* integer overflow in the BER decoder src/ber-decoder.c (ber_decoder_s)

* denial of service due to stack overflow in src/ber-decoder.c
(push_decoder_state, pop_decoder_state)

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/libksba/libksba.hash diff | blob | history
package/libksba/libksba.mk diff | blob | history