curl: Backport CVE fixes - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Robert Joslyn <robert.joslyn@redrectangle.org>	2022-11-06 13:52:13 -0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-11-14 15:59:15 +0000
commit	2ac597044a45c338beb3b4ec12612e4f69fcc9e2 (patch)
tree	394d6637faf4330d9d9bc6d15b5aefbb8db40c9d /scripts/lib/scriptutils.py
parent	79434a17eb4835e85fcd477baec08c8ce49a4c14 (diff)
download	poky-2ac597044a45c338beb3b4ec12612e4f69fcc9e2.tar.gz

curl: Backport CVE fixes

Backport fixes for: - CVE-2022-32221 POST following PUT confusion - CVE-2022-35260 .netrc parser out-of-bounds access - CVE-2022-42915 HTTP proxy double-free - CVE-2022-42916 HSTS bypass via IDN (From OE-Core rev: 724c8b65fe307af602b6bf7e3704dfb25bc51ee9) Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/scriptutils.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: