unzip: CVE-2015-7696, CVE-2015-7697 - openembedded-core

diff options

author	Tudor Florea <tudor.florea@enea.com>	2015-12-14 13:24:10 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-01-30 12:02:00 +0000
commit	9c841157f8ecd3221702c4675a4145f586617780 (patch)
tree	02cdc1f4f51263fe313c7de3da672efd551f6cd8 /meta-selftest
parent	a2980f004519a4baeb4c88ad924e15195fe75e32 (diff)
download	openembedded-core-9c841157f8ecd3221702c4675a4145f586617780.tar.gz

unzip: CVE-2015-7696, CVE-2015-7697

CVE-2015-7696: Fixes a heap overflow triggered by unzipping a file with password CVE-2015-7697: Fixes a denial of service with a file that never finishes unzipping References: http://www.openwall.com/lists/oss-security/2015/10/11/5 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7696 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7697 Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-selftest')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: