diff options
Diffstat (limited to 'meta/recipes-support/curl/curl/CVE-2022-32221.patch')
-rw-r--r-- | meta/recipes-support/curl/curl/CVE-2022-32221.patch | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/meta/recipes-support/curl/curl/CVE-2022-32221.patch b/meta/recipes-support/curl/curl/CVE-2022-32221.patch new file mode 100644 index 0000000000..8e662abd3a --- /dev/null +++ b/meta/recipes-support/curl/curl/CVE-2022-32221.patch | |||
@@ -0,0 +1,29 @@ | |||
1 | From 75c04a3e75e8e3025a17ca3033ca307da9691cd0 Mon Sep 17 00:00:00 2001 | ||
2 | From: Vivek Kumbhar <vkumbhar@mvista.com> | ||
3 | Date: Fri, 11 Nov 2022 10:49:58 +0530 | ||
4 | Subject: [PATCH] CVE-2022-32221 | ||
5 | |||
6 | Upstream-Status: Backport [https://github.com/curl/curl/commit/a64e3e59938abd7d6] | ||
7 | CVE: CVE-2022-32221 | ||
8 | Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com> | ||
9 | |||
10 | setopt: when POST is set, reset the 'upload' field. | ||
11 | --- | ||
12 | lib/setopt.c | 1 + | ||
13 | 1 file changed, 1 insertion(+) | ||
14 | |||
15 | diff --git a/lib/setopt.c b/lib/setopt.c | ||
16 | index bebb2e4..4d96f6b 100644 | ||
17 | --- a/lib/setopt.c | ||
18 | +++ b/lib/setopt.c | ||
19 | @@ -486,6 +486,7 @@ CURLcode Curl_vsetopt(struct Curl_easy *data, CURLoption option, va_list param) | ||
20 | } | ||
21 | else | ||
22 | data->set.httpreq = HTTPREQ_GET; | ||
23 | + data->set.upload = FALSE; | ||
24 | break; | ||
25 | |||
26 | case CURLOPT_COPYPOSTFIELDS: | ||
27 | -- | ||
28 | 2.25.1 | ||
29 | |||