go: fix CVE-2025-58189 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Archana Polampalli <archana.polampalli@windriver.com>	2025-11-28 21:37:57 +0530
committer	Steve Sakoman <steve@sakoman.com>	2025-12-05 06:56:34 -0800
commit	5f8155aefa0930c0495f24cfc2dbecc8b6ff4e0d (patch)
tree	2733123ca5c841e92157ca68fb5831932c5576e4 /meta/recipes-devtools/python/python3/crosspythonpath.patch
parent	dd0a2c24702152c76547b1db2690ff5af3d23f06 (diff)
download	poky-5f8155aefa0930c0495f24cfc2dbecc8b6ff4e0d.tar.gz

go: fix CVE-2025-58189

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information (the ALPN protocols sent by the client) which is not escaped. (From OE-Core rev: b3f055df67cf345c9a17c5c1c874c778d538ba9e) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/recipes-devtools/python/python3/crosspythonpath.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: