package/netatalk: security bump to version 3.1.23 - buildroot

diff options

author	Peter Korsgaard <peter@korsgaard.com>	2018-12-21 13:56:59 +0100
committer	Peter Korsgaard <peter@korsgaard.com>	2018-12-21 15:40:29 +0100
commit	8aaf05916c20d1fe3fafd424fdcd77726de140c4 (patch)
tree	7821dbf6950b7ebe98e44dc0193db0b30efb6b77 /package/json-for-modern-cpp/json-for-modern-cpp.mk
parent	0774dec62a39f75d5e6f9ee7c43a658e9f9ef1fe (diff)
download	buildroot-8aaf05916c20d1fe3fafd424fdcd77726de140c4.tar.gz buildroot-8aaf05916c20d1fe3fafd424fdcd77726de140c4.zip

package/netatalk: security bump to version 3.1.23

Fixes CVE-2018-1160: Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution. For more details, see the release notes: http://netatalk.sourceforge.net/3.1/ReleaseNotes3.1.12.html Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/json-for-modern-cpp/json-for-modern-cpp.mk')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: