projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d65d1d0) | patch
package/busybox: udhcp CVE-2019-5747 patch
authorJared Bents <jared.bents@rockwellcollins.com>
Wed, 6 Mar 2019 14:22:31 +0000 (08:22 -0600)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Thu, 7 Mar 2019 21:09:42 +0000 (22:09 +0100)
commita49e8f34fffffaa7839861049add77fe6f4d7967
tree15ae82207e21aa3b67c61fafbe4941516712ec90tree
parentd65d1d066ba895f3ccb277d24199019663801721commit | diff
package/busybox: udhcp CVE-2019-5747 patch

Patch to resolve CVE-2019-5747 which affects versions prior
to 1.30.0

More information can be found at:
https://nvd.nist.gov/vuln/detail/CVE-2019-5747

This applies to both master and 2019.02

Signed-off-by: Jared Bents <jared.bents@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/busybox/0004-udhcpc-check-that-4-byte-options-are-indeed-4-byte-closes-11506.patch diff | blob | history
package/busybox/0005-udhcpc-when-decoding-DHCP_SUBNET-ensure-it-is-4-bytes-long.patch [new file with mode: 0644] blob