go: fix CVE-2022-23772 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Minjae Kim <flowergom@gmail.com>	2022-02-26 20:55:35 +0000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-03-09 17:30:48 +0000
commit	415757639d85c61b61faf5f0d258057a9924ceb1 (patch)
tree	36b3ca768172afe695e368fe7f00c29b8c40f9e5 /scripts/lib/devtool/build_sdk.py
parent	dfd900b5b0a8834499cddbfcb196ecccd79c9003 (diff)
download	poky-415757639d85c61b61faf5f0d258057a9924ceb1.tar.gz

go: fix CVE-2022-23772

math/big: prevent large memory consumption in Rat.SetString An attacker can cause unbounded memory growth in a program using (*Rat).SetString due to an unhandled overflow. Upstream-Status: Backport [https://go.dev/issue/50699] CVE: CVE-2022-23772 (From OE-Core rev: e4d15040f62744265b9236ad7276f3371a9172da) Signed-off-by:Minjae Kim <flowergom@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/build_sdk.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: