diff options
Diffstat (limited to 'meta/recipes-support/curl/curl/cve-2021-22945.patch')
-rw-r--r-- | meta/recipes-support/curl/curl/cve-2021-22945.patch | 34 |
1 files changed, 0 insertions, 34 deletions
diff --git a/meta/recipes-support/curl/curl/cve-2021-22945.patch b/meta/recipes-support/curl/curl/cve-2021-22945.patch deleted file mode 100644 index 2cbe110332..0000000000 --- a/meta/recipes-support/curl/curl/cve-2021-22945.patch +++ /dev/null | |||
@@ -1,34 +0,0 @@ | |||
1 | CVE: CVE-2021-22945 | ||
2 | Upstream-Status: Backport | ||
3 | Signed-off-by: Ross Burton <ross.burton@arm.com> | ||
4 | |||
5 | From 92cb3059dab2f9ef3e6ea614dad5c86917d19807 Mon Sep 17 00:00:00 2001 | ||
6 | From: z2_ on hackerone <> | ||
7 | Date: Tue, 24 Aug 2021 09:50:33 +0200 | ||
8 | Subject: [PATCH 1/3] mqtt: clear the leftovers pointer when sending succeeds | ||
9 | |||
10 | CVE-2021-22945 | ||
11 | |||
12 | Bug: https://curl.se/docs/CVE-2021-22945.html | ||
13 | --- | ||
14 | lib/mqtt.c | 4 ++++ | ||
15 | 1 file changed, 4 insertions(+) | ||
16 | |||
17 | diff --git a/lib/mqtt.c b/lib/mqtt.c | ||
18 | index f077e6c3d..fcd40b41e 100644 | ||
19 | --- a/lib/mqtt.c | ||
20 | +++ b/lib/mqtt.c | ||
21 | @@ -128,6 +128,10 @@ static CURLcode mqtt_send(struct Curl_easy *data, | ||
22 | mq->sendleftovers = sendleftovers; | ||
23 | mq->nsend = nsend; | ||
24 | } | ||
25 | + else { | ||
26 | + mq->sendleftovers = NULL; | ||
27 | + mq->nsend = 0; | ||
28 | + } | ||
29 | return result; | ||
30 | } | ||
31 | |||
32 | -- | ||
33 | 2.25.1 | ||
34 | |||