diff options
author | Ovidiu Panait <ovidiu.panait@windriver.com> | 2017-09-15 14:36:58 +0300 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-09-18 11:07:30 +0100 |
commit | 80aa68fa758652b168bbd9235f8e8b77d7904cf5 (patch) | |
tree | 85d718b2ca5a68633aa0cca1cc46a24340289932 /bitbake/AUTHORS | |
parent | 50b205ee274f2f29280a1da5401ce7ef61b6c0c7 (diff) | |
download | poky-80aa68fa758652b168bbd9235f8e8b77d7904cf5.tar.gz |
ruby: CVE-2017-14064
Ruby through 2.2.7, 2.3.x through 2.3.4, and 2.4.x through 2.4.1 can expose
arbitrary memory during a JSON.generate call. The issues lies in using
strdup in ext/json/ext/generator/generator.c, which will stop after
encountering a '\0' byte, returning a pointer to a string of length zero,
which is not the length stored in space_len.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2017-14064
Upstream patch:
https://github.com/flori/json/commit/8f782fd8e181d9cfe9387ded43a5ca9692266b85
(From OE-Core rev: 17dbfd967019f9b50a9f6aa3f48cd3658fcccc70)
Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'bitbake/AUTHORS')
0 files changed, 0 insertions, 0 deletions