git.libre-soc.org Git - buildroot.git/commit

author	Baruch Siach <baruch@tkos.co.il>
	Tue, 28 Aug 2018 12:36:17 +0000 (15:36 +0300)
committer	Peter Korsgaard <peter@korsgaard.com>
	Tue, 28 Aug 2018 13:42:59 +0000 (15:42 +0200)
commit	8a4536b2dddf7006da46706d1c133f4b0521457f
tree	3a700158fb858619500c82094bc231b3329465ac	tree
parent	11241ac656af569894ead9561ebf53abb5d5f18d	commit \| diff

libsoup: add upstream security fix

Fixes CVE-2018-12910: The get_cookies function in soup-cookie-jar.c in
libsoup 2.63.2 allows attackers to have unspecified impact via an empty
hostname.

Cc: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

package/libsoup/0001-cookie-jar-bail-if-hostname-is-an-empty-string.patch

[new file with mode: 0644]

blob

RSS Atom