projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d642381) | patch
package/lz4: add upstream security fix for CVE-2021-3520
authorPeter Korsgaard <peter@korsgaard.com>
Sun, 23 May 2021 09:52:39 +0000 (11:52 +0200)
committerYann E. MORIN <yann.morin.1998@free.fr>
Sun, 23 May 2021 11:45:59 +0000 (13:45 +0200)
commitecb55c43cea48445fec74b0c9758431bcb1a54f0
treede4f8578a7b1c94012e2c106f405ab4ea6a2a2e7tree
parentd64238104949d3c3653cc35f1cb76282792d4c4fcommit | diff
package/lz4: add upstream security fix for CVE-2021-3520

Fixes a potential memory corruption with negative memmove() size.  For
details, see (NVD not yet updated):

https://security-tracker.debian.org/tracker/CVE-2021-3520

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
package/lz4/0001-Fix-potential-memory-corruption-with-negative-memmov.patch [new file with mode: 0644] blob
package/lz4/lz4.mk diff | blob | history