diff options
Diffstat (limited to 'meta/recipes-support/curl/curl/CVE-2022-32221.patch')
| -rw-r--r-- | meta/recipes-support/curl/curl/CVE-2022-32221.patch | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/meta/recipes-support/curl/curl/CVE-2022-32221.patch b/meta/recipes-support/curl/curl/CVE-2022-32221.patch new file mode 100644 index 0000000000..8e662abd3a --- /dev/null +++ b/meta/recipes-support/curl/curl/CVE-2022-32221.patch | |||
| @@ -0,0 +1,29 @@ | |||
| 1 | From 75c04a3e75e8e3025a17ca3033ca307da9691cd0 Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Vivek Kumbhar <vkumbhar@mvista.com> | ||
| 3 | Date: Fri, 11 Nov 2022 10:49:58 +0530 | ||
| 4 | Subject: [PATCH] CVE-2022-32221 | ||
| 5 | |||
| 6 | Upstream-Status: Backport [https://github.com/curl/curl/commit/a64e3e59938abd7d6] | ||
| 7 | CVE: CVE-2022-32221 | ||
| 8 | Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com> | ||
| 9 | |||
| 10 | setopt: when POST is set, reset the 'upload' field. | ||
| 11 | --- | ||
| 12 | lib/setopt.c | 1 + | ||
| 13 | 1 file changed, 1 insertion(+) | ||
| 14 | |||
| 15 | diff --git a/lib/setopt.c b/lib/setopt.c | ||
| 16 | index bebb2e4..4d96f6b 100644 | ||
| 17 | --- a/lib/setopt.c | ||
| 18 | +++ b/lib/setopt.c | ||
| 19 | @@ -486,6 +486,7 @@ CURLcode Curl_vsetopt(struct Curl_easy *data, CURLoption option, va_list param) | ||
| 20 | } | ||
| 21 | else | ||
| 22 | data->set.httpreq = HTTPREQ_GET; | ||
| 23 | + data->set.upload = FALSE; | ||
| 24 | break; | ||
| 25 | |||
| 26 | case CURLOPT_COPYPOSTFIELDS: | ||
| 27 | -- | ||
| 28 | 2.25.1 | ||
| 29 | |||