diff options
author | Li Wang <li.wang@windriver.com> | 2016-09-14 02:25:32 -0400 |
---|---|---|
committer | Martin Jansa <Martin.Jansa@gmail.com> | 2016-09-19 16:24:10 +0200 |
commit | 24e387aaf78bc0f68a46abb1fab3a76364804bd1 (patch) | |
tree | 73a6690c21239d402ba05063be88ad1bdccdeb44 /meta-oe/recipes-connectivity | |
parent | 14a532d78309768756403efb3491f514af7dcdf7 (diff) | |
download | meta-openembedded-contrib-24e387aaf78bc0f68a46abb1fab3a76364804bd1.tar.gz |
openldap: fix CVE-2015-3276
the patch comes from:
https://bugzilla.redhat.com/show_bug.cgi?id=1238322
https://bugzilla.redhat.com/attachment.cgi?id=1055640
The nss_parse_ciphers function in libraries/libldap/tls_m.c in
OpenLDAP does not properly parse OpenSSL-style multi-keyword mode
cipher strings, which might cause a weaker than intended cipher to
be used and allow remote attackers to have unspecified impact via
unknown vectors.
Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Diffstat (limited to 'meta-oe/recipes-connectivity')
0 files changed, 0 insertions, 0 deletions