go: Security Fix for CVE-2022-2879 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Sunil Kumar <sukumar@mvista.com>	2022-11-10 17:30:59 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-11-20 08:19:10 +0000
commit	b39245d723fd04f706d475710a3b0ebb5c611825 (patch)
tree	6c1ef5aa2b84b8fe4956a9c7a408963c404799dc /scripts/lib/scriptpath.py
parent	21370990c6e081e2d2ba09424203ae97a5a06523 (diff)
download	poky-b39245d723fd04f706d475710a3b0ebb5c611825.tar.gz

go: Security Fix for CVE-2022-2879

archive/tar: limit size of headers Set a 1MiB limit on special file blocks (PAX headers, GNU long names, GNU link names), to avoid reading arbitrarily large amounts of data into memory. Link: https://github.com/golang/go/commit/0a723816cd2 (From OE-Core rev: a8e2f91edfe2df5204a482c4e53fbdd08f80e878) Signed-off-by: Sunil Kumar <sukumar@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/scriptpath.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: