openssl: CVE: CVE-2017-3731 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Alexandru Moise <alexandru.moise@windriver.com>	2017-02-07 13:48:47 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-02-08 12:00:21 +0000
commit	8ba5b9eae34bbab537954ccee1726c7ee7a82750 (patch)
tree	23e66063281ba3e18b5e4c583ac9a694fe4c856d /documentation/poky.ent
parent	a2f06ef25486bbdc10b1dd5812648c7e909a3643 (diff)
download	poky-8ba5b9eae34bbab537954ccee1726c7ee7a82750.tar.gz

openssl: CVE: CVE-2017-3731

If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash. Backported from: https://github.com/openssl/openssl/commit/8e20499629b6bcf868d0072c7011e590b5c2294d https://github.com/openssl/openssl/commit/2198b3a55de681e1f3c23edb0586afe13f438051 * CVE: CVE-2017-3731 Upstream-status: Backport (From OE-Core rev: 1fe1cb3e6e03b4f7f0d30b2b67edc8809a18fe70) Signed-off-by: Alexandru Moise <alexandru.moise@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'documentation/poky.ent')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: