zlib: CVE-2022-37434 a heap-based buffer over-read - linux/poky.git

diff options

author	Hitendra Prajapati <hprajapati@mvista.com>	2022-08-17 17:07:25 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-08-23 15:22:52 +0100
commit	b65989b835f45e9a21ab8af0b09194c77d5ab43b (patch)
tree	23a11e73a4dbe7a3b8538f07a6e5cfce5b753547 /scripts/lib/devtool/upgrade.py
parent	33e296554e3088d5dad9088004b0825f30f296c9 (diff)
download	poky-b65989b835f45e9a21ab8af0b09194c77d5ab43b.tar.gz

zlib: CVE-2022-37434 a heap-based buffer over-read

Source: https://github.com/madler/zlib MR: 120525 Type: Security Fix Disposition: Backport from https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1 & https://github.com/madler/zlib/commit/1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d ChangeID: 94d9b7d372b83cc1022c0a15046c5449d39208c3 Description: CVE-2022-37434 zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. (From OE-Core rev: 46ac4a9dc832edb1b3e75bb4003930085b086bef) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/upgrade.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: