libcurl: security bump to version 7.59.0 - buildroot

diff options

author	Baruch Siach <baruch@tkos.co.il>	2018-03-15 20:06:19 +0200
committer	Peter Korsgaard <peter@korsgaard.com>	2018-03-16 10:34:28 +0100
commit	bf3476e5b1527ac91c0a12949be7da5253ea66c1 (patch)
tree	5eb421b906635894916c0ee1aec46c4e686d8ef2 /package/xfsprogs/0003-workqueue-add-missing-pthreads-header.patch
parent	dbeb43e97626df988534b9cf62b5618b0b6ccfa1 (diff)
download	buildroot-bf3476e5b1527ac91c0a12949be7da5253ea66c1.tar.gz buildroot-bf3476e5b1527ac91c0a12949be7da5253ea66c1.zip

libcurl: security bump to version 7.59.0

CVE-2018-1000120: curl could be fooled into writing a zero byte out of bounds when curl is told to work on an FTP URL with the setting to only issue a single CWD command, if the directory part of the URL contains a "%00" sequence. https://curl.haxx.se/docs/adv_2018-9cd6.html CVE-2018-1000121: curl might dereference a near-NULL address when getting an LDAP URL. https://curl.haxx.se/docs/adv_2018-97a2.html CVE-2018-1000122: When asked to transfer an RTSP URL, curl could calculate a wrong data length to copy from the read buffer. https://curl.haxx.se/docs/adv_2018-b047.html Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/xfsprogs/0003-workqueue-add-missing-pthreads-header.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: