eglibc: CVE-2014-9402 denial of service in getnetbyname - linux/poky.git

diff options

author	Sona Sarmadi <sona.sarmadi@enea.com>	2015-02-20 11:37:37 +0100
committer	Tudor Florea <tudor.florea@enea.com>	2015-07-06 20:19:37 +0200
commit	57e2046e575c85d5963b108792a28fc166329234 (patch)
tree	a1e712926f1099455d0752430b0de35decb8418b /meta/recipes-connectivity/ppp-dialin/ppp-dialin_0.1.bb
parent	0892adf79c73bbfb427846670c480da0912431a2 (diff)
download	poky-57e2046e575c85d5963b108792a28fc166329234.tar.gz

eglibc: CVE-2014-9402 denial of service in getnetbyname

getnetbyname function in eglibc 2.21 and earlier will enter an infinite loop if the DNS backend is activated in the system Name Service Switch configuration, and the DNS resolver receives a positive answer while processing the networkname. Reference https://sourceware.org/bugzilla/show_bug.cgi?id=17630 Changes in the NEWS and ChangeLog files from the original upstream commit have been ignored Upstream commit that fixes this issue: https://sourceware.org/git/gitweb.cgi?p=glibc.git; h=11e3417af6e354f1942c68a271ae51e892b2814d Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>

Diffstat (limited to 'meta/recipes-connectivity/ppp-dialin/ppp-dialin_0.1.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: