diff options
author | Shinu Chandran <shinucha@cisco.com> | 2023-09-25 11:12:56 +0530 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2023-09-27 10:23:10 -0400 |
commit | b25e6a9e9111cbc0fc71e0e96c560c5cd2ee845d (patch) | |
tree | 32afe2a607878cb67389ae6b56814d5312ad7b17 /meta-oe | |
parent | 06c077155c6fa02967fa1ee75dc0fd1974264ce3 (diff) | |
download | meta-openembedded-contrib-b25e6a9e9111cbc0fc71e0e96c560c5cd2ee845d.tar.gz |
c-ares: CVE-ID correction for CVE-2022-4904
- The c-ares commit https://github.com/c-ares/c-ares/commit/9903253c347f
(Add str len check in config_sortlist to avoid stack overflow),
fixes the CVE-2022-4904 instead of CVE-2022-4415
https://security-tracker.debian.org/tracker/CVE-2022-4904
- CVE-ID inside the CVE-2022-4904.patch is wrong
in the OE commit[092e125f44f6]
- Hence corrected the CVE-ID in CVE-2022-4904.patch
Signed-off-by: Shinu Chandran <shinucha@cisco.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-oe')
-rw-r--r-- | meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch b/meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch index 0a0e8f0b61..328075ca64 100644 --- a/meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch +++ b/meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch @@ -20,7 +20,7 @@ fixes #496 Fix By: @hopper-vul -CVE: CVE-2022-4415 +CVE: CVE-2022-4904 Upstream-Status: Backport [https://github.com/c-ares/c-ares/commit/9903253c347f9e0bffd285ae3829aef251cc852d] Signed-off-by: Peter Marko <peter.marko@siemens.com> |