diff options
| author | Haris Okanovic <haris.okanovic@ni.com> | 2015-05-15 16:57:11 -0500 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-06-28 09:44:08 +0100 |
| commit | 86bf04ca9be15a2ed9cad7f3918c90de6ebd6f14 (patch) | |
| tree | 803e5dd41729753f061aab6c38f52a72d3931abe /meta/recipes-bsp/pcmciautils | |
| parent | d3f66566834b10971e6e3d2a0d50290441b96c59 (diff) | |
| download | ast2050-yocto-poky-86bf04ca9be15a2ed9cad7f3918c90de6ebd6f14.zip ast2050-yocto-poky-86bf04ca9be15a2ed9cad7f3918c90de6ebd6f14.tar.gz | |
glibc: CVE-2015-1781: resolv/nss_dns/dns-host.c buffer overflow
Backport Arjun Shankar's patch for CVE-2015-1781:
A buffer overflow flaw was found in the way glibc's gethostbyname_r() and
other related functions computed the size of a buffer when passed a
misaligned buffer as input. An attacker able to make an application call
any of these functions with a misaligned buffer could use this flaw to
crash the application or, potentially, execute arbitrary code with the
permissions of the user running the application.
https://sourceware.org/bugzilla/show_bug.cgi?id=18287
(From OE-Core rev: c0f0b6e6ef1edc0a9f9e1ceffb1cdbbef2e409c6)
(From OE-Core rev: 54f5e2001249c117cdfc1c26631ba50bc7a155dd)
Signed-off-by: Haris Okanovic <haris.okanovic@ni.com>
Reviewed-by: Ben Shelton <ben.shelton@ni.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-bsp/pcmciautils')
0 files changed, 0 insertions, 0 deletions
