python-pycrypto: Security fix CVE-2013-7459 - meta-python2 - Layer enabling legacy python2 support after EOL

diff options

author	Yi Zhao <yi.zhao@windriver.com>	2017-08-24 13:56:32 +0800
committer	Armin Kuster <akuster808@gmail.com>	2017-09-13 17:16:28 -0700
commit	843271441961e1aabbc296412a891ed126982ac7 (patch)
tree	d785ab591bfe33036bd87913ee896449ae075e3b /recipes-devtools/python/python-netaddr_0.7.19.bb
parent	2e60729290aaab028fe1e74bfb101191d083ab81 (diff)
download	meta-python2-843271441961e1aabbc296412a891ed126982ac7.tar.gz

python-pycrypto: Security fix CVE-2013-7459pyro-next pyro

CVE-2013-7459: Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py. Reference: https://nvd.nist.gov/vuln/detail/CVE-2013-7459 Patch from: https://github.com/dlitz/pycrypto/commit/8dbe0dc3eea5c689d4f76b37b93fe216cf1f00d4 (From meta-openembedded commit: 44af8be65f2f1969df006eec08040f5ff81df790) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit e4af9cf961c70bb4a96eaafd995d0ff2c264cb8e) Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Tim Orling <ticotimo@gmail.com>

Diffstat (limited to 'recipes-devtools/python/python-netaddr_0.7.19.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: