openssl: fix CVE-2014-0198 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Maxin B. John <maxin.john@enea.com>	2014-05-09 14:20:01 -0700
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-12 17:07:08 +0100
commit	e55ac718a5d5f9e1546ef5ae7dd1a2c77485daa8 (patch)
tree	2ebbe8a99290c18096f801ccb69b1b579a7175c7 /meta-yocto/conf/distro/poky.conf
parent	2f020ec5dfdd36d3984513887cfa28dd10cbc01a (diff)
download	poky-e55ac718a5d5f9e1546ef5ae7dd1a2c77485daa8.tar.gz

openssl: fix CVE-2014-0198

A null pointer dereference bug was discovered in do_ssl3_write(). An attacker could possibly use this to cause OpenSSL to crash, resulting in a denial of service. https://access.redhat.com/security/cve/CVE-2014-0198 (From OE-Core rev: ffe6bdcb896dc39750144944be1f635baf33f6a0) Signed-off-by: Maxin B. John <maxin.john@enea.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta-yocto/conf/distro/poky.conf')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: