expat: CVE-2012-6702, CVE-2016-5300 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Sona Sarmadi <sona.sarmadi@enea.com>	2017-01-16 07:30:00 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-05-18 13:14:21 +0100
commit	11b217d60bbe6643936214431030f6448cad2dba (patch)
tree	072a761dafc126557e2e4435fe09e886748f2b4c /meta/recipes-core/expat/expat.inc
parent	c71ea3831a9d40e37f47015cf0d14ab7fd61077d (diff)
download	poky-11b217d60bbe6643936214431030f6448cad2dba.tar.gz

expat: CVE-2012-6702, CVE-2016-5300

References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5300 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6702 http://www.openwall.com/lists/oss-security/2016/06/04/5 Reference to upstream fix: https://bugzilla.redhat.com/attachment.cgi?id=1165210 Squashed backport against vanilla Expat 2.1.1, addressing: * CVE-2012-6702 -- unanticipated internal calls to srand * CVE-2016-5300 -- use of too little entropy (From OE-Core rev: c9a2e2f33e8b473f06a3941dab9b4ecccd111a23) Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-core/expat/expat.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: