summaryrefslogtreecommitdiffstats
path: root/meta/recipes-support/nspr/files
diff options
context:
space:
mode:
authorPaul Eggleton <paul.eggleton@linux.intel.com>2014-06-09 11:26:53 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2014-06-10 17:36:44 +0100
commitd3bc30f75be8dc4d0e503701de106e25fc15da13 (patch)
tree0e8b89b9c940b34294205f33236fd02b614eefa4 /meta/recipes-support/nspr/files
parent889f731acc7be2503fe092a6ba527cd8893e6948 (diff)
downloadpoky-d3bc30f75be8dc4d0e503701de106e25fc15da13.tar.gz
openssl: fix CVE-2014-0221
From the OpenSSL Security Advisory [05 Jun 2014] http://www.openssl.org/news/secadv_20140605.txt DTLS recursion flaw (CVE-2014-0221) By sending an invalid DTLS handshake to an OpenSSL DTLS client the code can be made to recurse eventually crashing in a DoS attack. Only applications using OpenSSL as a DTLS client are affected. (Patch borrowed from Fedora.) (From OE-Core rev: 2a9e46a319d32e99266fd44e1ea1ca2b5e7c9a6a) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support/nspr/files')
0 files changed, 0 insertions, 0 deletions