projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9d1dab1) | patch
libupnp: add upstream security fix for CVE-2016-8863
authorPeter Korsgaard <peter@korsgaard.com>
Mon, 19 Dec 2016 13:13:24 +0000 (14:13 +0100)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Mon, 19 Dec 2016 21:28:46 +0000 (22:28 +0100)
commitc489cbad775380b4c7586574e3dae8dc67ee9087
treee2cd26f809a43b9590dfe58343c11de26bb0ae86tree
parent9d1dab1b80ae5b0851e29b9273e248d966ad8637commit | diff
libupnp: add upstream security fix for CVE-2016-8863

Fix out-of-bound access in create_url_list()

If there is an invalid URL in URLS->buf after a valid one, uri_parse is
called with out pointing after the allocated memory. As uri_parse writes
to *out before returning an error the loop in create_url_list must be
stopped early to prevent an out-of-bound access.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/libupnp/0002-Fix-out-of-bound-access-in-create_url_list-CVE-2016-.patch [new file with mode: 0644] blob