NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
29a20cdcd9
kumquat-buildroot/package/file
History
Peter Korsgaard 9e308d7f1b package/file: add upstream security fix 
Fixes the following security vulnerability:

- CVE-2019-18218: cdf_read_property_info in cdf.c in file through 5.37 does
  not restrict the number of CDF_VECTOR elements, which allows a heap-based
  buffer overflow (4-byte out-of-bounds write).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 1c4584e47e)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-31 11:24:52 +01:00
..
0001-Detect-multiplication-overflow-when-computing-sector.patch package/file: add upstream security fix 2019-10-31 11:24:52 +01:00
0002-Limit-the-number-of-elements-in-a-vector-found-by-os.patch package/file: add upstream security fix 2019-10-31 11:24:52 +01:00
Config.in
file.hash package/file: bump version to 5.37 2019-10-31 11:24:46 +01:00
file.mk package/file: bump version to 5.37 2019-10-31 11:24:46 +01:00