libcroco: CVE-2017-7961 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Armin Kuster <akuster808@gmail.com>	2018-09-26 18:23:20 -0700
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2018-10-10 13:26:25 +0100
commit	242829e5b6c81a1d88abb4f6e64ffd8547173ae9 (patch)
tree	903722b2ce56915774ef6b95803f0088a79ae457 /bitbake
parent	c8a29e6c8190bdd7f10e96f8e1b351586dee0368 (diff)
download	poky-242829e5b6c81a1d88abb4f6e64ffd8547173ae9.tar.gz

libcroco: CVE-2017-7961

* CVE-2017-7961 The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CSS file. CVE: CVE-2017-7961 Ref: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7961 (From OE-Core rev: 9b321cf141c3fa18d5b85f17ffe1710f4555ca49) Signed-off-by: Sinan Kaya <okaya@kernel.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'bitbake')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: