diff options
author | Armin Kuster <akuster808@gmail.com> | 2018-05-03 09:00:59 -0700 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-05-15 11:01:17 +0100 |
commit | e31e85d86996796eac51afc0510391f51f7df013 (patch) | |
tree | 3b33a63dbe57095990d1f4431b01741308d1a343 /meta/recipes-extended/libarchive | |
parent | 3be01630d8859ca8f14d44056deb4088ca3735bc (diff) | |
download | poky-e31e85d86996796eac51afc0510391f51f7df013.tar.gz |
ruby: Update to 2.4.4
The dot releases are maint only.
2.4.4 included:
CVE-2017-17742: HTTP response splitting in WEBrick
CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
CVE-2018-8777: DoS by large request in WEBrick
CVE-2018-8778: Buffer under-read in String#unpack
CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
(From OE-Core rev: ce12ff394281a42448d92109568db33739b2b542)
(From OE-Core rev: 43721cc12ce782603ecdc0aa3a514bc6c8d4f97f)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
[Fixup for Morty context]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-extended/libarchive')
0 files changed, 0 insertions, 0 deletions