git.libre-soc.org Git - buildroot.git/commit

author	Baruch Siach <baruch@tkos.co.il>
	Fri, 15 Jun 2018 03:56:48 +0000 (06:56 +0300)
committer	Peter Korsgaard <peter@korsgaard.com>
	Fri, 15 Jun 2018 08:02:24 +0000 (10:02 +0200)
commit	89be4c7b0ea4cb650aeaff78b9cf7265a89ba43f
tree	3c2a7ef79c1e9df5c3cf495b51ec742100f1120f	tree
parent	faf50414611b674b1758900d228fa6156cb65d57	commit \| diff

file: add upstream security fix

Fixes CVE-2018-10360: The do_core_note function in readelf.c in
libmagic.a in file 5.33 allows remote attackers to cause a denial of
service (out-of-bounds read and application crash) via a crafted ELF
file.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

package/file/0001-Avoid-reading-past-the-end-of-buffer-Rui-Reis.patch

[new file with mode: 0644]

blob

RSS Atom