openssl: fix CVE-2014-0198 - openembedded-core

diff options

author	Maxin B. John <maxin.john@enea.com>	2014-05-19 16:13:04 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-21 09:32:38 +0100
commit	4c58fe468790822fe48e0a570779979c831d0f10 (patch)
tree	efde892bcee04c60bf9d7ea74364f1102c7ac178 /meta-hob/COPYING.MIT
parent	abc158bf873bb7c01414e437eea2b538eb73881c (diff)
download	openembedded-core-4c58fe468790822fe48e0a570779979c831d0f10.tar.gz

openssl: fix CVE-2014-0198

A null pointer dereference bug was discovered in do_ssl3_write(). An attacker could possibly use this to cause OpenSSL to crash, resulting in a denial of service. https://access.redhat.com/security/cve/CVE-2014-0198 Signed-off-by: Maxin B. John <maxin.john@enea.com> Signed-off-by: Matt Fleming <matt.fleming@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta-hob/COPYING.MIT')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: