libfcgi:add security patch for CVE-2012-6687 - buildroot

diff options

author	niranjan.reddy <niranjan.reddy@rockwellcollins.com>	2016-03-01 11:51:56 +0530
committer	Peter Korsgaard <peter@korsgaard.com>	2016-03-01 11:18:27 +0100
commit	2311d54ec4a2320505750655c2c3fb4c525e0872 (patch)
tree	52fcab58cc0eebe680c0ce24f9729998ae0bf6f6 /package/postgresql/postgresql.hash
parent	18f3a22dcefe668a4522a936a0af59a2fa55f707 (diff)
download	buildroot-2311d54ec4a2320505750655c2c3fb4c525e0872.tar.gz buildroot-2311d54ec4a2320505750655c2c3fb4c525e0872.zip

libfcgi:add security patch for CVE-2012-6687

Fix-CVE-2012-6687 - remote attackers cause a denial of service (crash) via a large number of connections (http://www.cvedetails.com/cve/CVE-2012-6687/). use poll in os_unix.c instead of select to avoid problem with > 1024 connections. The patch libfcgi_2.4.0-8.3.debian.tar.xz is taken from the below link: (https://launchpad.net/ubuntu/+source/libfcgi/2.4.0-8.3) The next release of libfcgi is 2.4.1 which may have this fix is yet to be released officially. Signed-off-by: Niranjan Reddy <niranjan.reddy@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/postgresql/postgresql.hash')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: