zlib: CVE-2022-37434 a heap-based buffer over-read - linux/poky.git

diff options

author	Hitendra Prajapati <hprajapati@mvista.com>	2022-08-17 14:35:05 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-08-22 14:29:48 +0100
commit	98dd6e4cac39cde42080814da2a5669760af25ff (patch)
tree	53daa5c03ecd43f36e446b64af49ca70c7142ad6 /scripts/lib/devtool/build.py
parent	ae4acc9f81e8e28c0e29a5924a6d7ab6ea5aaab9 (diff)
download	poky-98dd6e4cac39cde42080814da2a5669760af25ff.tar.gz

zlib: CVE-2022-37434 a heap-based buffer over-read

Source: https://github.com/madler/zlib MR: 120531 Type: Security Fix Disposition: Backport from https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1 & https://github.com/madler/zlib/commit/1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d ChangeID: 364c17d74213c64fe40b9b37ee78aa172ff93acf Description: CVE-2022-37434 zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. (From OE-Core rev: 10ed7cf347d9e73b29e4a3f6ef77e0a4b08e350b) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/build.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: