diff options
author | Yi Zhao <yi.zhao@windriver.com> | 2017-08-24 13:56:32 +0800 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2017-09-13 17:16:28 -0700 |
commit | 44af8be65f2f1969df006eec08040f5ff81df790 (patch) | |
tree | 83e783e965f66b65ff47c2d91c9838a1a1912974 /meta-ruby/conf | |
parent | 17da020e0de825b538e5558ebe7810346f21d00f (diff) | |
download | meta-openembedded-44af8be65f2f1969df006eec08040f5ff81df790.tar.gz |
python-pycrypto: Security fix CVE-2013-7459
CVE-2013-7459: Heap-based buffer overflow in the ALGnew function in
block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows
remote attackers to execute arbitrary code as demonstrated by a crafted
iv parameter to cryptmsg.py.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2013-7459
Patch from:
https://github.com/dlitz/pycrypto/commit/8dbe0dc3eea5c689d4f76b37b93fe216cf1f00d4
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit e4af9cf961c70bb4a96eaafd995d0ff2c264cb8e)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-ruby/conf')
0 files changed, 0 insertions, 0 deletions