summaryrefslogtreecommitdiffstats
path: root/dynamic-layers/qt5-layer
diff options
context:
space:
mode:
authorSona Sarmadi <sona.sarmadi@enea.com>2016-11-30 13:17:38 +0100
committerOtavio Salvador <otavio@ossystems.com.br>2016-12-09 09:41:45 -0200
commita870befa7789197b0091cc18c9c5196a848a75c7 (patch)
tree94cdd5fc34930b8fe8d695d5446419b8ca95b264 /dynamic-layers/qt5-layer
parent0d28c2bcf1a2081e45bbb81c5efdb7c5cb3a1532 (diff)
downloadmeta-freescale-a870befa7789197b0091cc18c9c5196a848a75c7.tar.gz
linux-qoriq: fix CVE-2016-2053
The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2053 upstream patch: https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/ ?id=15430f775ee686b61569a0c3e74cf0b2ad57c8eb [backported from stable 3.16] Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Diffstat (limited to 'dynamic-layers/qt5-layer')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-05-17 23:31:57 +0000